** Changed in: linux-ec2 (Ubuntu Lucid) Status: New => Fix Committed
** Changed in: linux (Ubuntu Lucid) Status: New => Fix Committed ** Description changed: Off-by-one error in the get_prng_bytes function in crypto/ansi_cprng.c in the Linux kernel through 3.11.4 makes it easier for context-dependent attackers to defeat cryptographic protection mechanisms via multiple requests for small amounts of data, leading to improper management of the state of the consumed data. + + Break-Fix: - 714b33d15130cbb5ab426456d4e3de842d6c5b8a -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1229981 Title: CVE-2013-4345 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1229981/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs