VMware Tanzu products update for GNU gcc

1) Use of cryptographically weak PRNG

EUVDB-ID: #VU12267

Risk: Low

CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2017-11671

CWE-ID: CWE-338 - Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)

Exploit availability: No

Description

The vulnerability allows a remote attacker to obtain potentially sensitive information on the target system.

The weakness exists in the ix86_expand_builtin function in i386.c due to generating of instruction sequences that clobber the status flag of the RDRAND and RDSEED intrinsics before it can be read, potentially causing failures of these instructions to go unreported. A remote attacker can trigger less randomness in random number generation and gain access to potentially sensitive information.

Mitigation

Install update from vendor's website.

Vulnerable software versions

VMware Tanzu Application Service for VMs: All versions

Isolation Segment: All versions

VMware Tanzu Operations Manager: before 2.10.52

Tanzu Greenplum for Kubernetes: before 2.0.0

CPE2.3

• cpe:2.3:a:vmware:vmware_tanzu_application_service_for_vms:*:*:*:*:*:*:*:*
• cpe:2.3:a:vmware:isolation_segment:*:*:*:*:*:*:*:*
• cpe:2.3:a:vmware:vmware_tanzu_operations_manager:*:*:*:*:*:*:*:*
• cpe:2.3:a:vmware:tanzu_greenplum_for_kubernetes:*:*:*:*:*:*:*:*

External links

https://tanzu.vmware.com/security/usn-5770-1

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.