CVE-2024-25389 Information
Mar 28, 2024
cve
Description
RT-Thread through 5.0.2 generates random numbers with a weak algorithm of \seed = 214013L seed + 2531011L; return (seed » 16) & 0x7FFF;\ in calc_random in drivers/misc/rt_random.c.
Reference
https://github.com/RT-Thread/rt-thread/issues/8283 https://github.com/hnsecurity/vulns/blob/main/HNS-2024-05-rt-thread.txt https://security.humanativaspa.it/multiple-vulnerabilities-in-rt-thread-rtos/ https://seclists.org/fulldisclosure/2024/Mar/28
Share on: