CVE-2011-0766
EPSS 3.4%發布日:2011/5/31修改日:2026/4/28
描述
The random number generator in the Crypto application before 2.0.2.2, and SSH before 2.0.5, as used in the Erlang/OTP ssh library before R14B03, uses predictable seeds based on the current time, which makes it easier for remote attackers to guess DSA host and SSH session keys.
受影響套件(1)
- Debian/erlangfrom 0, < 1:14.b.3-dfsg-1