Lucene search
MitreCVELIST:CVE-2013-7373HistoryOct 03, 2022 - 4:14 p.m.
CVE-2013-7373
2022-10-0316:14:53
mitre
www.cve.org
android
openssl
prng
Android before 4.4 does not properly arrange for seeding of the OpenSSL PRNG, which makes it easier for attackers to defeat cryptographic protection mechanisms by leveraging use of the PRNG within multiple applications.
References
android-developers.blogspot.com.au/2013/08/some-securerandom-thoughts.html
emboss.github.io/blog/2013/08/21/openssl-prng-is-not-really-fork-safe/
marc.info/?l=openssl-dev&m=130289811108150&w=2
marc.info/?l=openssl-dev&m=130298304903422&w=2
www.reddit.com/r/Android/comments/1k6f03/due_to_a_serious_encryptionrng_flaw_in_android/cblvum5
Related
cve
cve
CVE-2013-7373
2022-10-03 16:14:53
prion
prion
Design/Logic Flaw
2014-04-29 20:55:00
nvd
nvd
CVE-2013-7373
2014-04-29 20:55:09