CVE-2007-2453

N/A Unknown
Published: June 11, 2007 Modified: April 23, 2026
View on NVD

Description

The random number feature in Linux kernel 2.6 before 2.6.20.13, and 2.6.21.x before 2.6.21.4, (1) does not properly seed pools when there is no entropy, or (2) uses an incorrect cast when extracting entropy, which might cause the random number generator to provide the same values after reboots on systems without an entropy source.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
http://marc.info/?l=linux-kernel&m=118128610219959&w=2
Source: secalert@redhat.com
Patch
http://marc.info/?l=linux-kernel&m=118128622431272&w=2
Source: secalert@redhat.com
Patch
http://osvdb.org/37114
Source: secalert@redhat.com
http://secunia.com/advisories/25596
Source: secalert@redhat.com
http://secunia.com/advisories/25700
Source: secalert@redhat.com
http://secunia.com/advisories/25961
Source: secalert@redhat.com
http://secunia.com/advisories/26133
Source: secalert@redhat.com
http://secunia.com/advisories/26139
Source: secalert@redhat.com
http://secunia.com/advisories/26450
Source: secalert@redhat.com
http://secunia.com/advisories/26620
Source: secalert@redhat.com
http://secunia.com/advisories/26664
Source: secalert@redhat.com
http://www.debian.org/security/2007/dsa-1356
Source: secalert@redhat.com
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.21.4
Source: secalert@redhat.com
http://www.mandriva.com/security/advisories?name=MDKSA-2007:171
Source: secalert@redhat.com
http://www.mandriva.com/security/advisories?name=MDKSA-2007:196
Source: secalert@redhat.com
http://www.mandriva.com/security/advisories?name=MDKSA-2007:216
Source: secalert@redhat.com
http://www.novell.com/linux/security/advisories/2007_43_kernel.html
Source: secalert@redhat.com
http://www.novell.com/linux/security/advisories/2007_51_kernel.html
Source: secalert@redhat.com
http://www.securityfocus.com/bid/24390
Source: secalert@redhat.com
http://www.securitytracker.com/id?1018248
Source: secalert@redhat.com
http://www.ubuntu.com/usn/usn-470-1
Source: secalert@redhat.com
http://www.ubuntu.com/usn/usn-486-1
Source: secalert@redhat.com
http://www.ubuntu.com/usn/usn-489-1
Source: secalert@redhat.com
http://www.vupen.com/english/advisories/2007/2105
Source: secalert@redhat.com
https://exchange.xforce.ibmcloud.com/vulnerabilities/34781
Source: secalert@redhat.com
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9960
Source: secalert@redhat.com
https://rhn.redhat.com/errata/RHSA-2007-0376.html
Source: secalert@redhat.com
http://marc.info/?l=linux-kernel&m=118128610219959&w=2
Source: af854a3a-2127-422b-91ae-364da2661108
Patch
http://marc.info/?l=linux-kernel&m=118128622431272&w=2
Source: af854a3a-2127-422b-91ae-364da2661108
Patch
http://osvdb.org/37114
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/25596
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/25700
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/25961
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/26133
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/26139
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/26450
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/26620
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/26664
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.debian.org/security/2007/dsa-1356
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.21.4
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.mandriva.com/security/advisories?name=MDKSA-2007:171
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.mandriva.com/security/advisories?name=MDKSA-2007:196
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.mandriva.com/security/advisories?name=MDKSA-2007:216
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.novell.com/linux/security/advisories/2007_43_kernel.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.novell.com/linux/security/advisories/2007_51_kernel.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/bid/24390
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.securitytracker.com/id?1018248
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.ubuntu.com/usn/usn-470-1
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.ubuntu.com/usn/usn-486-1
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.ubuntu.com/usn/usn-489-1
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.vupen.com/english/advisories/2007/2105
Source: af854a3a-2127-422b-91ae-364da2661108
https://exchange.xforce.ibmcloud.com/vulnerabilities/34781
Source: af854a3a-2127-422b-91ae-364da2661108
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9960
Source: af854a3a-2127-422b-91ae-364da2661108
https://rhn.redhat.com/errata/RHSA-2007-0376.html
Source: af854a3a-2127-422b-91ae-364da2661108

54 reference(s) from NVD

Quick Stats

CVSS v3 Score
N/A / 10.0
EPSS (Exploit Probability)
0.1%
29th percentile
Exploitation Status
Not in CISA KEV

Affected Vendors

linux