CVE-2005-0106

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2005-0106

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2005-0106.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2005-0106

Downstream

DEBIAN-CVE-2005-0106

Published

2005-05-03T04:00:00Z

Modified

2026-04-10T03:36:51.150897Z

Summary

[none]

Details

SSLeay.pm in libnet-ssleay-perl before 1.25 uses the /tmp/entropy file for entropy if a source is not set in the EGD_PATH variable, which allows local users to reduce the cryptographic strength of certain operations by modifying the file.

References

http://secunia.com/advisories/18639
http://www.mandriva.com/security/advisories?name=MDKSA-2006:023
http://www.securityfocus.com/bid/13471
https://usn.ubuntu.com/113-1/

CVE-2005-0106

Affected packages