Unrated severityNVD Advisory· Published Feb 28, 2020· Updated Aug 4, 2024
CVE-2019-10064
CVE-2019-10064
Description
hostapd before 2.6, in EAP mode, makes calls to the rand() and random() standard library functions without any preceding srand() or srandom() call, which results in inappropriate use of deterministic values. This was fixed in conjunction with CVE-2016-10743.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- hostapd/hostapddescription
Patches
Vulnerability mechanics
References
7- packetstormsecurity.com/files/156573/Hostapd-Insufficient-Entropy.htmlmitrex_refsource_MISC
- seclists.org/fulldisclosure/2020/Feb/26mitremailing-listx_refsource_FULLDISC
- www.openwall.com/lists/oss-security/2020/02/27/1mitremailing-listx_refsource_MLISTx_refsource_MISC
- www.openwall.com/lists/oss-security/2020/02/27/2mitremailing-listx_refsource_MLIST
- lists.debian.org/debian-lts-announce/2020/03/msg00010.htmlmitremailing-listx_refsource_MLIST
- lists.debian.org/debian-lts-announce/2020/08/msg00013.htmlmitremailing-listx_refsource_MLIST
- w1.fi/cgit/hostap/commit/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.