CVE-2014-0016
published 2014-03-24CVE-2014-0016: stunnel before 5.00, when using fork threading, does not properly update the state of the OpenSSL pseudo-random number generator (PRNG), which causes…
PriorityP422medium4.3CVSS 2.0
AVNACMAuNCPINAN
EPSS
2.15%
79.9th percentile
stunnel before 5.00, when using fork threading, does not properly update the state of the OpenSSL pseudo-random number generator (PRNG), which causes subsequent children with the same process ID to use the same entropy pool and allows remote attackers to obtain private keys for EC (ECDSA) or DSA certificates.
Affected
103 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | stunnel4 | — | — |
| stunnel | stunnel | <= 4.56 | — |
| stunnel | stunnel | — | — |
| stunnel | stunnel | — | — |
| stunnel | stunnel | — | — |
| stunnel | stunnel | — | — |
| stunnel | stunnel | — | — |
| stunnel | stunnel | — | — |
| stunnel | stunnel | — | — |
| stunnel | stunnel | — | — |
| stunnel | stunnel | — | — |
| stunnel | stunnel | — | — |
| stunnel | stunnel | — | — |
| stunnel | stunnel | — | — |
| stunnel | stunnel | — | — |
| stunnel | stunnel | — | — |
| stunnel | stunnel | — | — |
| stunnel | stunnel | — | — |
| stunnel | stunnel | — | — |
| stunnel | stunnel | — | — |
| stunnel | stunnel | — | — |
| stunnel | stunnel | — | — |
| stunnel | stunnel | — | — |
| stunnel | stunnel | — | — |
| stunnel | stunnel | — | — |
CVSS provenance
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:P/I:N/A:N
vendor_debian4.3LOW
vendor_redhat4.3MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
stunnel up to 3.x Pseudo-Random Number Generator cryptographic issue (Nessus ID 73212 / ID 43582)
vuldb·2026-05-08·CVSS 4.3
CVE-2014-0016 [MEDIUM] stunnel up to 3.x Pseudo-Random Number Generator cryptographic issue (Nessus ID 73212 / ID 43582)
A vulnerability classified as problematic has been found in stunnel up to 3.x. The affected element is an unknown function of the component Pseudo-Random Number Generator. Performing a manipulation results in cryptographic issues.
This vulnerability is known as CVE-2014-0016. Remote exploitation of the attack is possible. No exploit is available.
It is recommended to upgrade the affected component.
GHSA
GHSA-xxr9-37w5-wgwc: stunnel before 5
ghsa_unreviewed·2022-05-17
CVE-2014-0016 [MEDIUM] CWE-332 GHSA-xxr9-37w5-wgwc: stunnel before 5
stunnel before 5.00, when using fork threading, does not properly update the state of the OpenSSL pseudo-random number generator (PRNG), which causes subsequent children with the same process ID to use the same entropy pool and allows remote attackers to obtain private keys for EC (ECDSA) or DSA certificates.
Red Hat
stunnel: Improper initialization of PRNG after fork()
vendor_redhat·2014-03-05·CVSS 4.3
CVE-2014-0016 [MEDIUM] stunnel: Improper initialization of PRNG after fork()
stunnel: Improper initialization of PRNG after fork()
stunnel before 5.00, when using fork threading, does not properly update the state of the OpenSSL pseudo-random number generator (PRNG), which causes subsequent children with the same process ID to use the same entropy pool and allows remote attackers to obtain private keys for EC (ECDSA) or DSA certificates.
Statement: Not vulnerable. This issue does not affect the version of stunnel package as shipped with Red Hat Enterprise Linux 5 and 6.
Package: stunnel (Red Hat Enterprise Linux 5) - Not affected
Package: stunnel (Red Hat Enterprise Linux 6) - Not affected
Package: stunnel (Red Hat Enterprise Linux 7) - Not affected
Debian
CVE-2014-0016: stunnel4 - stunnel before 5.00, when using fork threading, does not properly update the sta...
vendor_debian·2014·CVSS 4.3
CVE-2014-0016 [MEDIUM] CVE-2014-0016: stunnel4 - stunnel before 5.00, when using fork threading, does not properly update the sta...
stunnel before 5.00, when using fork threading, does not properly update the state of the OpenSSL pseudo-random number generator (PRNG), which causes subsequent children with the same process ID to use the same entropy pool and allows remote attackers to obtain private keys for EC (ECDSA) or DSA certificates.
Scope: local
bookworm: resolved
bullseye: resolved
forky: resolved
sid: resolved
trixie: resolved
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2014-8102 xorg-x11-server: out of bounds access due to not validating length or offset values in XFixes extension
bugzilla·2014-11-27·CVSS 6.5
CVE-2014-8102 [MEDIUM] CVE-2014-8102 xorg-x11-server: out of bounds access due to not validating length or offset values in XFixes extension
CVE-2014-8102 xorg-x11-server: out of bounds access due to not validating length or offset values in XFixes extension
SProcXFixesSelectSelectionInput() function call in XFixes extension
do not check that the lengths and/or indexes sent by the
client are within the bounds specified by the caller or the bounds of
the memory allocated to hold the request read from the client, so could
read or write past the bounds of allocated memory while processing the
request. These calls all occur only after a client has successfully
authenticated itself.
Discussion:
Created attachment 962153
0016-xfixes_unvalidated_length_in_SProcXFixesSelectSelectionInput_CVE-2014-8102.patch
---
OOB read leading to X server crash.
---
External References:
http://www.x.org/wiki/Development/Security/Advisory-2014-
Bugzilla
CVE-2014-0213 CVE-2014-0214 CVE-2014-0215 CVE-2014-0216 CVE-2014-0217 CVE-2014-0218 moodle: upstream 2.7, 2.6.3, 2.5.6, and 2.4.10 security fixes
bugzilla·2014-05-21·CVSS 6.8
CVE-2014-0213 [MEDIUM] CVE-2014-0213 CVE-2014-0214 CVE-2014-0215 CVE-2014-0216 CVE-2014-0217 CVE-2014-0218 moodle: upstream 2.7, 2.6.3, 2.5.6, and 2.4.10 security fixes
CVE-2014-0213 CVE-2014-0214 CVE-2014-0215 CVE-2014-0216 CVE-2014-0217 CVE-2014-0218 moodle: upstream 2.7, 2.6.3, 2.5.6, and 2.4.10 security fixes
Moodle upstream has released versions 2.7, 2.6.3, 2.5.6, and 2.4.10 to fix the following security flaws:
CVE-2014-0213 MSA-14-0014: Cross-site request forgery possible in Assignment
CVE-2014-0214 MSA-14-0015: Web service token expiry issue for MoodleMobile
CVE-2014-0215 MSA-14-0016: Anonymous student identity revealed in assignment
CVE-2014-0216 MSA-14-0017: File access issue in HTML block
CVE-2014-0217 MSA-14-0018: Information leak in courses
CVE-2014-0218 MSA-14-0019: Reflected XSS in URL downloader repository
For a full summary and patch links, refer to the following:
http://seclists.org/oss-sec/2014/q2/329
Discussion:
Created moodle tra
Bugzilla
CVE-2014-0016 stunnel: Improper initialization of PRNG after fork()
bugzilla·2014-03-04·CVSS 4.3
CVE-2014-0016 [MEDIUM] CVE-2014-0016 stunnel: Improper initialization of PRNG after fork()
CVE-2014-0016 stunnel: Improper initialization of PRNG after fork()
A flaw was found in the way stunnel, a socket wrapper which can provide SSL support to ordinary applications, performed (re)initialization of PRNG after fork. When accepting a new connection, the server forks and the child process handles the request. The RAND_bytes() function of openssl doesn't reset its state after the fork, but seeds the PRNG with the output of time(NULL). The most important consequence is that servers using EC (ECDSA) or DSA certificates may under certain conditions leak their private key.
Discussion:
Created attachment 870826
proposed patch
---
stunnel and rhel7 have the same stunnel version 4.56 so would require fixing in rhel7 atleast if stunnel in fedora is fixed. Still looking into other rhel
http://www.openwall.com/lists/oss-security/2014/03/05/1http://www.securityfocus.com/bid/65964https://bugzilla.redhat.com/attachment.cgi?id=870826&action=diffhttps://bugzilla.redhat.com/show_bug.cgi?id=1072180https://www.stunnel.org/sdf_ChangeLog.htmlhttp://www.openwall.com/lists/oss-security/2014/03/05/1http://www.securityfocus.com/bid/65964https://bugzilla.redhat.com/attachment.cgi?id=870826&action=diffhttps://bugzilla.redhat.com/show_bug.cgi?id=1072180https://www.stunnel.org/sdf_ChangeLog.html
2014-03-24
Published