Severity: Unknown
Affected Package: kernel
Summary: arc4random insufficient entropy at system startup
The arc4random(9) random number framework did not obtain enough entropy at boot, so system services relying on it received predictable random numbers; GEOM classes initialized at startup remained affected. Users were advised to update to RELENG_0_2 (MidnightBSD 0.2.1-p3). This corresponds to FreeBSD-SA-08:11.arc4random.
No specific recommendations provided.
Aliases: CVE-2008-5162
Published: November 24, 2008
Last Modified: November 24, 2008