Vulnerabilities

CVE-2019-10064

by Fred · 28/02/2020

hostapd before 2.6, in EAP mode, makes calls to the rand() and random() standard library functions without any preceding srand() or srandom() call, which results in inappropriate use of deterministic values. This was fixed in conjunction with CVE-2016-10743.

Date published : 2020-02-28

http://seclists.org/fulldisclosure/2020/Feb/26

http://packetstormsecurity.com/files/156573/Hostapd-Insufficient-Entropy.html

Related

Tags: Cybersecurity Alert