FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

libssh -- PRNG state reuse on forking servers

Affected packages
libssh < 0.6.3

Details

VuXML ID f8c88d50-5fb3-11e4-81bd-5453ed2e2b49
Discovery 2014-03-05
Entry 2014-10-29

Aris Adamantiadis reports:

When accepting a new connection, the server forks and the child process handles the request. The RAND_bytes() function of openssl doesn't reset its state after the fork, but simply adds the current process id (getpid) to the PRNG state, which is not guaranteed to be unique.

References

CVE Name CVE-2014-0017
Message http://www.openwall.com/lists/oss-security/2014/03/05/1
URL http://secunia.com/advisories/57407