Связанные уязвимости
CVSS3: 5.5
redhat
около 1 года назад
A cryptographic low entropy vulnerability was found in the Linux kernel, where the kstack_offset variable only uses the low bits for kernel stack offset entropy. This issue can result in loss of overall security of the system.
github
около 1 года назад
In the Linux kernel, the following vulnerability has been resolved: randomize_kstack: Improve entropy diffusion The kstack_offset variable was really only ever using the low bits for kernel stack offset entropy. Add a ror32() to increase bit diffusion.
