CVE-2013-4442

EPSS 0.65%

Published: 12/19/2014Modified: 4/28/2026

Also known as:DEBIAN-CVE-2013-4442

Description

Password Generator (aka Pwgen) before 2.07 uses weak pseudo generated numbers when /dev/urandom is unavailable, which makes it easier for context-dependent attackers to guess the numbers.

Affected packages (1)

Debian/pwgenfrom 0, < 2.07-1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2013-4442