rpm package
suse/libICE&distro=SUSE Linux Enterprise Desktop 12 SP2
pkg:rpm/suse/libICE&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP2
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2017-2626 | Med | 5.2 | < 1.0.8-10.1 | 1.0.8-10.1 | Jul 27, 2018 | It was discovered that libICE before 1.0.9-8 used a weak entropy to generate keys. A local attacker could potentially use this flaw for session hijacking using the information available from the process list. |
- affected < 1.0.8-10.1fixed 1.0.8-10.1
It was discovered that libICE before 1.0.9-8 used a weak entropy to generate keys. A local attacker could potentially use this flaw for session hijacking using the information available from the process list.