Vulnerabilities
Misconfiguration
Runtime Security
Compliance
CVE Vulnerabilities

CVE-2021-27211

Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG)

Published: Feb 15, 2021 | Modified: Jul 12, 2022
CVSS 3.x
7.5
HIGH
Source:
NVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu
LOW
Additional information
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2021-27211
CWEhttps://cwe.mitre.org/data/definitions/335.html

steghide 0.5.1 relies on a certain 32-bit seed value, which makes it easier for attackers to detect hidden data.

Weakness

The product uses a Pseudo-Random Number Generator (PRNG) but does not correctly manage seeds.

Affected Software

Name Vendor Start Version End Version
Steghide Steghide_project 0.5.1 (including) 0.5.1 (including)
Steghide Ubuntu bionic *
Steghide Ubuntu devel *
Steghide Ubuntu esm-apps/bionic *
Steghide Ubuntu esm-apps/focal *
Steghide Ubuntu esm-apps/jammy *
Steghide Ubuntu esm-apps/noble *
Steghide Ubuntu esm-apps/xenial *
Steghide Ubuntu focal *
Steghide Ubuntu groovy *
Steghide Ubuntu hirsute *
Steghide Ubuntu impish *
Steghide Ubuntu jammy *
Steghide Ubuntu kinetic *
Steghide Ubuntu lunar *
Steghide Ubuntu mantic *
Steghide Ubuntu noble *
Steghide Ubuntu oracular *
Steghide Ubuntu trusty *
Steghide Ubuntu upstream *
Steghide Ubuntu xenial *

Extended Description

	   PRNGs are deterministic and, while their output appears
	   random, they cannot actually create entropy. They rely on
	   cryptographically secure and unique seeds for entropy so
	   proper seeding is critical to the secure operation of the
	   PRNG.

	   Management of seeds could be broken down into two main areas:
	   

		 
		 
	   

		   PRNGs require a seed as input to generate a stream of
		   numbers that are functionally indistinguishable from
		   random numbers.  While the output is, in many cases,
		   sufficient for cryptographic uses, the output of any
		   PRNG is directly determined by the seed provided as
		   input. If the seed can be ascertained by a third party,
		   the entire output of the PRNG can be made known to
		   them. As such, the seed should be kept secret and
		   should ideally not be able to be guessed. For example,
		   the current time may be a poor seed. Knowing the
		   approximate time the PRNG was seeded greatly reduces
		   the possible key space.
		 

		   Seeds do not necessarily need to be unique, but reusing seeds may open up attacks if the seed is discovered.

References

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.
Copyright © 2024 Aqua Security Software Ltd.   Privacy Policy | Terms of Use