ALPINE-CVE-2017-2626
- Source
- https://security.alpinelinux.org/vuln/CVE-2017-2626
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/alpine/ALPINE-CVE-2017-2626.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/ALPINE-CVE-2017-2626
- Upstream
- Published
- 2018-07-27T19:29:00.377Z
- Modified
- 2025-12-03T22:38:47.526095Z
- Severity
-
- 5.5 (Medium) CVSS_V3 - CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
- Summary
- [none]
- Details
-
It was discovered that libICE before 1.0.9-8 used a weak entropy to generate keys. A local attacker could potentially use this flaw for session hijacking using the information available from the process list.
- References
Affected packages
Alpine:v3.11
libice
Package
- Name
- libice
- Purl
- pkg:apk/alpine/libice?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.0.10-r0
Alpine:v3.12
libice
Package
- Name
- libice
- Purl
- pkg:apk/alpine/libice?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.0.10-r0
Alpine:v3.13
libice
Package
- Name
- libice
- Purl
- pkg:apk/alpine/libice?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.0.10-r0
Alpine:v3.14
libice
Package
- Name
- libice
- Purl
- pkg:apk/alpine/libice?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.0.10-r0
Alpine:v3.15
libice
Package
- Name
- libice
- Purl
- pkg:apk/alpine/libice?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.0.10-r0
Alpine:v3.16
libice
Package
- Name
- libice
- Purl
- pkg:apk/alpine/libice?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.0.10-r0
Alpine:v3.17
libice
Package
- Name
- libice
- Purl
- pkg:apk/alpine/libice?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.0.10-r0
Alpine:v3.18
libice
Package
- Name
- libice
- Purl
- pkg:apk/alpine/libice?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.0.10-r0
Alpine:v3.19
libice
Package
- Name
- libice
- Purl
- pkg:apk/alpine/libice?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.0.10-r0
Alpine:v3.20
libice
Package
- Name
- libice
- Purl
- pkg:apk/alpine/libice?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.0.10-r0
Alpine:v3.21
libice
Package
- Name
- libice
- Purl
- pkg:apk/alpine/libice?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.0.10-r0
Alpine:v3.22
libice
Package
- Name
- libice
- Purl
- pkg:apk/alpine/libice?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.0.10-r0
Alpine:v3.23
libice
Package
- Name
- libice
- Purl
- pkg:apk/alpine/libice?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.0.10-r0