Bug 709023 (CVE-2011-0766)
| Summary: | CVE-2011-0766 erlang: SSH library uses a weak random number generator | ||
|---|---|---|---|
| Product: | [Other] Security Response | Reporter: | Jan Lieskovsky <jlieskov> |
| Component: | vulnerability | Assignee: | Red Hat Product Security <security-response-team> |
| Status: | CLOSED ERRATA | QA Contact: | |
| Severity: | medium | Docs Contact: | |
| Priority: | medium | ||
| Version: | unspecified | CC: | gemi, lemenkov, rhbugs, uwe |
| Target Milestone: | --- | Keywords: | Security |
| Target Release: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | Bug Fix | |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2011-09-13 09:38:35 UTC | Type: | --- |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
| Bug Depends On: | 709024, 709026 | ||
| Bug Blocks: | |||
|
Description
Jan Lieskovsky
2011-05-30 12:26:29 UTC
This issue affects the versions of the erlang package, as shipped with
Fedora release of 13, 14, and 15.
This issue affects the version of the erlang package, as present within
EPEL-6 repository.
Note: EPEL-4 and EPEL-5 erlang versions are affected too, but those are
too old and assuming there will be no willingness to update / rebase
those.
Created erlang tracking bugs for this issue Affects: fedora-all [bug 709024] Affects: epel-all [bug 709026] This issue has been addressed by the following releases: 1) erlang-R14B-03.1.fc14 for F-14, 2) erlang-R14B-03.2.fc15 for F-15, 3) erlang-R14B-03.3.el6 for EPEL-6. |