Wind River Support Network

HomeOther DownloadsLinux kernel - seeding /dev/random - CVE-2007-2453
Optional Type: Patch

Linux kernel - seeding /dev/random - CVE-2007-2453

Released: Apr 26, 2008     Updated: Apr 26, 2008


The random number feature in Linux kernel 2.6 before, and 2.6.21.x before, (1) does not properly seed pools when there is no entropy, or (2) uses an incorrect cast when extracting entropy, which might cause the random number generator to provide the same values after reboots on systems without an entropy source. IDENTIFIER = WIND00113531

Product Version

Linux Platforms 1.x


Installation Notes

Installation Notes for 1.4 for 1.5

1. Unzip the patch under [install_dir]/updates

2. Install the patch CD by entering the patch CD directory and run setup_linux.

3. This is a source only patch so you will have to build the kernel

4. Issue a make fs and make the kernel in a configured directory.

5. Upload the kernel and rootfs into the target and boot it up.

Live chat