Password Generator (aka Pwgen) before 2.07 uses weak pseudo generated numbers when /dev/urandom is unavailable, which makes it easier for context-dependent attackers to guess the numbers.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Pwgen | Pwgen_project | * | 2.06 (including) |
Pwgen | Ubuntu | lucid | * |
Pwgen | Ubuntu | precise | * |
Pwgen | Ubuntu | precise/esm | * |
Pwgen | Ubuntu | quantal | * |
Pwgen | Ubuntu | raring | * |
Pwgen | Ubuntu | saucy | * |
Pwgen | Ubuntu | trusty | * |
Pwgen | Ubuntu | upstream | * |
Pwgen | Ubuntu | utopic | * |