On Sun, Jul 16, 2017 at 08:32:03PM +0200, Peter Bex wrote: > The code that sets up the initial symbol table is run _before_ > initializing the PRNG, which means the randomization factor uses > the initial libc seed state. On most libc implementations this > means the symbol table randomization factor is a constant value > which does not differ between runs.
This issue has been assigned CVE-2017-11343. Regards, The CHICKEN Team
signature.asc
Description: PGP signature
_______________________________________________ Chicken-users mailing list Chicken-users@nongnu.org https://lists.nongnu.org/mailman/listinfo/chicken-users
