CVE-2017-2626

It was discovered that libICE before 1.0.9-8 used a weak entropy to generate keys. A local attacker could potentially use this flaw for session hijacking using the information available from the process list.

Date published : 2018-07-27

http://www.securityfocus.com/bid/96480

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-2626