In libxslt 1.1.29 and earlier, the EXSLT math.random function was not initialized with a random seed during startup, which could cause usage of this function to produce predictable outputs.
Use of Insufficiently Random Values
Use of Insufficiently Random Values
-
Package | Type | OS Name | OS Version | Affected Ranges | Fix Versions |
---|---|---|---|---|---|
debian/libxslt | deb | debian | 12 | >=1.1.35-1 | Not yet available |
debian/libxslt | deb | debian | 11 | >=1.1.34-4+deb11u1 | Not yet available |
debian/libxslt | deb | debian | 13 | >=1.1.35-1 | Not yet available |
debian/libxslt | deb | debian | 10 | >=1.1.32-2.2~deb10u1 | Not yet available |
debian/libxslt | deb | debian | unstable | >=1.1.35-1 | Not yet available |
Severity and metrics
No CVSS data available from this source.
3.9
3.9
1.4
-