Some weeks ago a bug in the random function get_cycles() of the Linux kernel for MIPS processors was discovered.
e.g. https://lists.openwrt.org/pipermail/ope ... 21318.html
And 10 days ago a fix was provided for this:
http://git.kernel.org/cgit/linux/kernel ... e2f54889ee
My questions are:
1. Is the RouterOS vulnerable? Which versions are?
2. Is the IPsec Implementation vulnerable?
3. When will you release a fix?
-
-
robertpenz
Member Candidate
- Posts: 104
- Joined:
Security: Random cypto generator broken in MIPS Kernel
Last edited by robertpenz on Fri Oct 25, 2013 5:23 pm, edited 2 times in total.
Re: Random problem in MIPS Kernels
Good question!!!Some weeks ago a bug in the random function get_cycles() of the Linux kernel for MIPS processors was discovered.
e.g. https://lists.openwrt.org/pipermail/ope ... 21318.html
And 10 days ago a fix was provided for this:
http://git.kernel.org/cgit/linux/kernel ... e2f54889ee
My questions are:
1. Is the RouterOS vulnerable? Which versions are?
2. Is the IPsec Implementation vulnerable?
3. When will you release a fix?
MikroTik continuously improve Router OS, bestway to make your MikroTik router safe and secure, just check MikroTik site for latest Router OS version and upgrade your own router accordingly.
Good Luck
-
-
robertpenz
Member Candidate
- Posts: 104
- Joined:
Re: Security: Random problem in MIPS Kernels
No answer?
-
-
robertpenz
Member Candidate
- Posts: 104
- Joined:
Re: Security: Random problem in MIPS Kernels
Still no answer? I've also sent a mail to the mikrotik support but also no answer there either ....do I need to consider the ipsec part to be brocken for the future?