CVE-2009-3238

Description

The get_random_int function in drivers/char/random.c in the Linux kernel before 2.6.30 produces insufficiently random numbers, which allows attackers to predict the return value, and possibly defeat protection mechanisms based on randomization, via vectors that leverage the function's tendency to "return the same value over and over again for long stretches of time."

CVSS Metrics

• v3.1•MEDIUM•Score: 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
• v2.0•HIGH•Score: 7.8AV:N/AC:L/Au:N/C:C/I:N/A:N

EPSS Trends

Current EPSS score: 0.24%• Percentile: 48%

Techniques & Countermeasures

• CWE-338•Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)

  The product uses a Pseudo-Random Number Generator (PRNG) in a security context, but the PRNG's algorithm is not cryptographically strong.

Affected Systems

• canonical•ubuntu_linux

  6.06 | 8.04 | 8.10 | 9.04

• linux•linux_kernel

  < 2.6.30

• opensuse•opensuse

  11.0

• suse•linux_enterprise_desktop

  10:sp2

• suse•linux_enterprise_server

  10:sp2

References (13)

• https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03836en_us
• http://www.ubuntu.com/usn/USN-852-1
• http://patchwork.kernel.org/patch/21766/
• https://bugzilla.redhat.com/show_bug.cgi?id=519692
• http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.30
• http://secunia.com/advisories/37351
• https://bugzilla.redhat.com/show_bug.cgi?id=499785
• http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00005.html
• https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11168
• http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=8a0a9bd4db63bc45e3017bedeafbd88d0eb84d02
• http://www.redhat.com/support/errata/RHSA-2009-1438.html
• http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00005.html
• http://secunia.com/advisories/37105