Community discussions

MikroTik App
 
robertpenz
Frequent Visitor
Frequent Visitor
Topic Author
Posts: 80
Joined: Mon Oct 10, 2011 8:41 am

Security: Random cypto generator broken in MIPS Kernel

Sun Sep 29, 2013 5:09 pm

Some weeks ago a bug in the random function get_cycles() of the Linux kernel for MIPS processors was discovered.

e.g. https://lists.openwrt.org/pipermail/ope ... 21318.html

And 10 days ago a fix was provided for this:

http://git.kernel.org/cgit/linux/kernel ... e2f54889ee

My questions are:

1. Is the RouterOS vulnerable? Which versions are?
2. Is the IPsec Implementation vulnerable?
3. When will you release a fix?
Last edited by robertpenz on Fri Oct 25, 2013 5:23 pm, edited 2 times in total.
 
User avatar
nawshad
Trainer
Trainer
Posts: 106
Joined: Wed Jul 23, 2008 2:19 pm
Location: Dhaka Bangladesh
Contact:

Re: Random problem in MIPS Kernels

Sun Sep 29, 2013 6:17 pm

Some weeks ago a bug in the random function get_cycles() of the Linux kernel for MIPS processors was discovered.

e.g. https://lists.openwrt.org/pipermail/ope ... 21318.html

And 10 days ago a fix was provided for this:

http://git.kernel.org/cgit/linux/kernel ... e2f54889ee

My questions are:

1. Is the RouterOS vulnerable? Which versions are?
2. Is the IPsec Implementation vulnerable?
3. When will you release a fix?
Good question!!!

MikroTik continuously improve Router OS, bestway to make your MikroTik router safe and secure, just check MikroTik site for latest Router OS version and upgrade your own router accordingly.

Good Luck
Nawshad Ahmed
MikroTik Certified Trainer & Consultant
MTCINE,MTCRE,MTCNA,MTCTCE,MTCWE,MTCUME
Cell:+17812610808
Massachusetts, U.S.A
Skype:ahmednawshad
 
robertpenz
Frequent Visitor
Frequent Visitor
Topic Author
Posts: 80
Joined: Mon Oct 10, 2011 8:41 am

Re: Security: Random problem in MIPS Kernels

Tue Oct 01, 2013 7:29 pm

No answer?
 
robertpenz
Frequent Visitor
Frequent Visitor
Topic Author
Posts: 80
Joined: Mon Oct 10, 2011 8:41 am

Re: Security: Random problem in MIPS Kernels

Fri Oct 25, 2013 5:21 pm

Still no answer? I've also sent a mail to the mikrotik support but also no answer there either ....do I need to consider the ipsec part to be brocken for the future?

Who is online

Users browsing this forum: sindy and 120 guests