CVE-2007-4311

CVE-2007-4311 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

The xfer_secondary_pool function in drivers/char/random.c in the Linux kernel 2.4 before 2.4.35 performs reseed operations on only the first few bytes of a buffer, which might make it easier for attackers to predict the output of the random number generator, related to incorrect use of the sizeof operator.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.