Mandriva Linux Security Advisory : python-pycrypto (MDVSA-2013:262)
Medium Nessus Plugin ID 70681
SynopsisThe remote Mandriva Linux host is missing a security update.
DescriptionUpdated python-pycrypto package fixes security vulnerability :
In PyCrypto before v2.6.1, the Crypto.Random pseudo-random number generator (PRNG) exhibits a race condition that may cause it to generate the same 'random' output in multiple processes that are forked from each other. Depending on the application, this could reveal sensitive information or cryptographic keys to remote attackers (CVE-2013-1445).
SolutionUpdate the affected python-pycrypto package.