CVE-2014-0878 Information

Description

The IBMSecureRandom component in the IBMJCE and IBMSecureRandom cryptographic providers in IBM SDK Java Technology Edition 5.0 before Service Refresh 16 FP6 6 before Service Refresh 16 6.0.1 before Service Refresh 8 7 before Service Refresh 7 and 7R1 before Service Refresh 1 makes it easier for context-dependent attackers to defeat cryptographic protection mechanisms by predicting the random number generator’s output.

Reference

http://secunia.com/advisories/59022 http://secunia.com/advisories/59023 http://secunia.com/advisories/59058 http://secunia.com/advisories/61264 http://www.ibm.com/support/docview.wss?uid=swg21675343 http://www.ibm.com/support/docview.wss?uid=swg21675588 http://www.ibm.com/support/docview.wss?uid=swg21677387 http://www.securityfocus.com/bid/67601 http://www-01.ibm.com/support/docview.wss?uid=swg21672043 http://www-01.ibm.com/support/docview.wss?uid=swg21673836 http://www-01.ibm.com/support/docview.wss?uid=swg21674539 http://www-01.ibm.com/support/docview.wss?uid=swg21676672 http://www-01.ibm.com/support/docview.wss?uid=swg21676703 http://www-01.ibm.com/support/docview.wss?uid=swg21676746 http://www-01.ibm.com/support/docview.wss?uid=swg21679610 http://www-01.ibm.com/support/docview.wss?uid=swg21679713 http://www-01.ibm.com/support/docview.wss?uid=swg21680750 http://www-01.ibm.com/support/docview.wss?uid=swg21681256 http://www-01.ibm.com/support/docview.wss?uid=swg21683484 http://www-01.ibm.com/support/docview.wss?uid=swg21686717 http://www-01.ibm.com/support/docview.wss?uid=swg21689593 https://exchange.xforce.ibmcloud.com/vulnerabilities/91084