Enfin d'apres #grsecurity
<spender> you see that n--,buf++ change in 2001? :P
<spender> was the difference between always using only the first byte of entropy for its PRNG, and using the whole buffer that it was supposed to :p
Le commit avec la faille http://www.openbsd.org/cgi-bin/cvsweb/src/sys/dev/rnd.c.diff?r1=1.35;r2=1.36
Et le correctif http://ftp.openbsd.org/pub/OpenBSD/patches/2.8/common/017_rnd.patch
# Il y a bien une faille
Posté par Denis Montjoie . En réponse au journal Backdoor dans OpenBSD ?. Évalué à 3.
<spender> you see that n--,buf++ change in 2001? :P
<spender> was the difference between always using only the first byte of entropy for its PRNG, and using the whole buffer that it was supposed to :p
Le commit avec la faille http://www.openbsd.org/cgi-bin/cvsweb/src/sys/dev/rnd.c.diff?r1=1.35;r2=1.36
Et le correctif http://ftp.openbsd.org/pub/OpenBSD/patches/2.8/common/017_rnd.patch
Donc en gros la faille a ete presente 1 an.