CVE-2007-2453

The random number feature in Linux kernel 2.6 before 2.6.20.13, and 2.6.21.x before 2.6.21.4, (1) does not properly seed pools when there is no entropy, or (2) uses an incorrect cast when extracting entropy, which might cause the random number generator to provide the same values after reboots on systems without an entropy source.

Published: 2007-06-11 Last update: 2026-06-16 Assigner: [email protected] Source: [email protected]

Conclusion & alert: CVE-2007-2453 is rated Low Risk (15.3/100): CVSS Low severity, with low exploitation likelihood (EPSS 0.38%). Mandatory action: Low composite risk—no urgent action required; patch on your normal maintenance cycle and revisit priority if CVSS or EPSS increases.

Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.

Exploit prediction scoring system (EPSS) score for CVE-2007-2453

EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).

# Date Old EPSS score New EPSS score Delta (New - Old)
1 2026-06-15 0.14% 0.38% +0.24%
2 2025-03-30 0.17% 0.14% -0.03%
3 2025-03-29 0.17%

Full EPSS history (7 records total)

Common vulnerability scoring system (CVSS) metrics for CVE-2007-2453

CVSS metrics for this CVE.

Base score Version Severity Vector Exploitability Impact Score source
1.2 2.0 LOW
AV:L/AC:H/Au:N/C:P/I:N/A:N Click to expand
Access vector (AV:L)
Requires local access to the target system.
Access complexity (AC:H)
Exploitation requires uncommon or highly specific conditions.
Authentication (AU:N)
No authentication is required.
Confidentiality impact (C:P)
Partial confidentiality impact.
Integrity impact (I:N)
No integrity impact.
Availability impact (A:N)
No availability impact.
1.9 2.9 [email protected]

Weakness enumeration for CVE-2007-2453

OS Trackers for CVE-2007-2453

vendor priority summary link
redhat high https://access.redhat.com/security/cve/CVE-2007-2453
ubuntu medium CVE-2007-2453 medium priority: Ubuntu including 3 source packages (linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20), 12 status rows across 4 suites (dapper, edgy, feisty, upstream): DNE 6, needs-triage 3, released 3. https://ubuntu.com/security/CVE-2007-2453

Vendor comments (NVD) for CVE-2007-2453

  • Red Hat (2007-06-12T00:00:00)

    This issue did not affect the versions of the the Linux kernel supplied with Red Hat Enterprise Linux 2.1, 3, or 4. For systems based on Red Hat Enterprise Linux 5, this is only an issue for systems without a real time clock, harddrive activity, or user input during boot time. Red Hat is aware of this issue and is tracking it via the following bug: https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=241718 The Red Hat Security Response Team has rated this issue as having low security impact, a future update may address this flaw. More information regarding issue severity can be found here: http://www.redhat.com/security/updates/classification/

Affected software / configurations for CVE-2007-2453

Vendor Product Version Raw CPE
linux linux_kernel 2.6.0 cpe:2.3:o:linux:linux_kernel:2.6.0:*:*:*:*:*:*:*
linux linux_kernel 2.6.0 cpe:2.3:o:linux:linux_kernel:2.6.0:test1:*:*:*:*:*:*
linux linux_kernel 2.6.0 cpe:2.3:o:linux:linux_kernel:2.6.0:test10:*:*:*:*:*:*
linux linux_kernel 2.6.0 cpe:2.3:o:linux:linux_kernel:2.6.0:test11:*:*:*:*:*:*
linux linux_kernel 2.6.0 cpe:2.3:o:linux:linux_kernel:2.6.0:test2:*:*:*:*:*:*
linux linux_kernel 2.6.0 cpe:2.3:o:linux:linux_kernel:2.6.0:test3:*:*:*:*:*:*
linux linux_kernel 2.6.0 cpe:2.3:o:linux:linux_kernel:2.6.0:test4:*:*:*:*:*:*
linux linux_kernel 2.6.0 cpe:2.3:o:linux:linux_kernel:2.6.0:test5:*:*:*:*:*:*
linux linux_kernel 2.6.0 cpe:2.3:o:linux:linux_kernel:2.6.0:test6:*:*:*:*:*:*
linux linux_kernel 2.6.0 cpe:2.3:o:linux:linux_kernel:2.6.0:test7:*:*:*:*:*:*
linux linux_kernel 2.6.0 cpe:2.3:o:linux:linux_kernel:2.6.0:test8:*:*:*:*:*:*
linux linux_kernel 2.6.0 cpe:2.3:o:linux:linux_kernel:2.6.0:test9:*:*:*:*:*:*
linux linux_kernel 2.6.1 cpe:2.3:o:linux:linux_kernel:2.6.1:*:*:*:*:*:*:*
linux linux_kernel 2.6.1 cpe:2.3:o:linux:linux_kernel:2.6.1:rc1:*:*:*:*:*:*
linux linux_kernel 2.6.1 cpe:2.3:o:linux:linux_kernel:2.6.1:rc2:*:*:*:*:*:*
linux linux_kernel 2.6.1 cpe:2.3:o:linux:linux_kernel:2.6.1:rc3:*:*:*:*:*:*
linux linux_kernel 2.6.2 cpe:2.3:o:linux:linux_kernel:2.6.2:*:*:*:*:*:*:*
linux linux_kernel 2.6.2 cpe:2.3:o:linux:linux_kernel:2.6.2:rc1:*:*:*:*:*:*
linux linux_kernel 2.6.2 cpe:2.3:o:linux:linux_kernel:2.6.2:rc2:*:*:*:*:*:*
linux linux_kernel 2.6.2 cpe:2.3:o:linux:linux_kernel:2.6.2:rc3:*:*:*:*:*:*
linux linux_kernel 2.6.3 cpe:2.3:o:linux:linux_kernel:2.6.3:*:*:*:*:*:*:*
linux linux_kernel 2.6.3 cpe:2.3:o:linux:linux_kernel:2.6.3:rc1:*:*:*:*:*:*
linux linux_kernel 2.6.3 cpe:2.3:o:linux:linux_kernel:2.6.3:rc2:*:*:*:*:*:*
linux linux_kernel 2.6.3 cpe:2.3:o:linux:linux_kernel:2.6.3:rc3:*:*:*:*:*:*
linux linux_kernel 2.6.3 cpe:2.3:o:linux:linux_kernel:2.6.3:rc4:*:*:*:*:*:*
linux linux_kernel 2.6.4 cpe:2.3:o:linux:linux_kernel:2.6.4:*:*:*:*:*:*:*
linux linux_kernel 2.6.4 cpe:2.3:o:linux:linux_kernel:2.6.4:rc1:*:*:*:*:*:*
linux linux_kernel 2.6.4 cpe:2.3:o:linux:linux_kernel:2.6.4:rc2:*:*:*:*:*:*
linux linux_kernel 2.6.4 cpe:2.3:o:linux:linux_kernel:2.6.4:rc3:*:*:*:*:*:*
linux linux_kernel 2.6.5 cpe:2.3:o:linux:linux_kernel:2.6.5:*:*:*:*:*:*:*
linux linux_kernel 2.6.5 cpe:2.3:o:linux:linux_kernel:2.6.5:rc1:*:*:*:*:*:*
linux linux_kernel 2.6.5 cpe:2.3:o:linux:linux_kernel:2.6.5:rc2:*:*:*:*:*:*
linux linux_kernel 2.6.5 cpe:2.3:o:linux:linux_kernel:2.6.5:rc3:*:*:*:*:*:*
linux linux_kernel 2.6.6 cpe:2.3:o:linux:linux_kernel:2.6.6:*:*:*:*:*:*:*
linux linux_kernel 2.6.6 cpe:2.3:o:linux:linux_kernel:2.6.6:rc1:*:*:*:*:*:*
linux linux_kernel 2.6.6 cpe:2.3:o:linux:linux_kernel:2.6.6:rc2:*:*:*:*:*:*
linux linux_kernel 2.6.6 cpe:2.3:o:linux:linux_kernel:2.6.6:rc3:*:*:*:*:*:*
linux linux_kernel 2.6.7 cpe:2.3:o:linux:linux_kernel:2.6.7:*:*:*:*:*:*:*
linux linux_kernel 2.6.7 cpe:2.3:o:linux:linux_kernel:2.6.7:rc1:*:*:*:*:*:*
linux linux_kernel 2.6.7 cpe:2.3:o:linux:linux_kernel:2.6.7:rc2:*:*:*:*:*:*
linux linux_kernel 2.6.7 cpe:2.3:o:linux:linux_kernel:2.6.7:rc3:*:*:*:*:*:*
linux linux_kernel 2.6.8 cpe:2.3:o:linux:linux_kernel:2.6.8:*:*:*:*:*:*:*
linux linux_kernel 2.6.8 cpe:2.3:o:linux:linux_kernel:2.6.8:rc1:*:*:*:*:*:*
linux linux_kernel 2.6.8 cpe:2.3:o:linux:linux_kernel:2.6.8:rc2:*:*:*:*:*:*
linux linux_kernel 2.6.8 cpe:2.3:o:linux:linux_kernel:2.6.8:rc3:*:*:*:*:*:*
linux linux_kernel 2.6.8 cpe:2.3:o:linux:linux_kernel:2.6.8:rc4:*:*:*:*:*:*
linux linux_kernel 2.6.8.1 cpe:2.3:o:linux:linux_kernel:2.6.8.1:*:*:*:*:*:*:*
linux linux_kernel 2.6.8.1.5 cpe:2.3:o:linux:linux_kernel:2.6.8.1.5:*:*:*:*:*:*:*
linux linux_kernel 2.6.9 cpe:2.3:o:linux:linux_kernel:2.6.9:*:*:*:*:*:*:*
linux linux_kernel 2.6.9 cpe:2.3:o:linux:linux_kernel:2.6.9:rc1:*:*:*:*:*:*
linux linux_kernel 2.6.9 cpe:2.3:o:linux:linux_kernel:2.6.9:rc2:*:*:*:*:*:*
linux linux_kernel 2.6.9 cpe:2.3:o:linux:linux_kernel:2.6.9:rc3:*:*:*:*:*:*
linux linux_kernel 2.6.9 cpe:2.3:o:linux:linux_kernel:2.6.9:rc4:*:*:*:*:*:*
linux linux_kernel 2.6.10 cpe:2.3:o:linux:linux_kernel:2.6.10:*:*:*:*:*:*:*
linux linux_kernel 2.6.10 cpe:2.3:o:linux:linux_kernel:2.6.10:rc1:*:*:*:*:*:*
linux linux_kernel 2.6.10 cpe:2.3:o:linux:linux_kernel:2.6.10:rc2:*:*:*:*:*:*
linux linux_kernel 2.6.10 cpe:2.3:o:linux:linux_kernel:2.6.10:rc3:*:*:*:*:*:*
linux linux_kernel 2.6.11 cpe:2.3:o:linux:linux_kernel:2.6.11:*:*:*:*:*:*:*
linux linux_kernel 2.6.11 cpe:2.3:o:linux:linux_kernel:2.6.11:rc1:*:*:*:*:*:*
linux linux_kernel 2.6.11 cpe:2.3:o:linux:linux_kernel:2.6.11:rc2:*:*:*:*:*:*
linux linux_kernel 2.6.11 cpe:2.3:o:linux:linux_kernel:2.6.11:rc3:*:*:*:*:*:*
linux linux_kernel 2.6.11 cpe:2.3:o:linux:linux_kernel:2.6.11:rc4:*:*:*:*:*:*
linux linux_kernel 2.6.11 cpe:2.3:o:linux:linux_kernel:2.6.11:rc5:*:*:*:*:*:*
linux linux_kernel 2.6.11.1 cpe:2.3:o:linux:linux_kernel:2.6.11.1:*:*:*:*:*:*:*
linux linux_kernel 2.6.11.2 cpe:2.3:o:linux:linux_kernel:2.6.11.2:*:*:*:*:*:*:*
linux linux_kernel 2.6.11.3 cpe:2.3:o:linux:linux_kernel:2.6.11.3:*:*:*:*:*:*:*
linux linux_kernel 2.6.11.4 cpe:2.3:o:linux:linux_kernel:2.6.11.4:*:*:*:*:*:*:*
linux linux_kernel 2.6.11.5 cpe:2.3:o:linux:linux_kernel:2.6.11.5:*:*:*:*:*:*:*
linux linux_kernel 2.6.11.6 cpe:2.3:o:linux:linux_kernel:2.6.11.6:*:*:*:*:*:*:*
linux linux_kernel 2.6.11.7 cpe:2.3:o:linux:linux_kernel:2.6.11.7:*:*:*:*:*:*:*
linux linux_kernel 2.6.11.8 cpe:2.3:o:linux:linux_kernel:2.6.11.8:*:*:*:*:*:*:*
linux linux_kernel 2.6.11.9 cpe:2.3:o:linux:linux_kernel:2.6.11.9:*:*:*:*:*:*:*
linux linux_kernel 2.6.11.10 cpe:2.3:o:linux:linux_kernel:2.6.11.10:*:*:*:*:*:*:*
linux linux_kernel 2.6.11.11 cpe:2.3:o:linux:linux_kernel:2.6.11.11:*:*:*:*:*:*:*
linux linux_kernel 2.6.11.12 cpe:2.3:o:linux:linux_kernel:2.6.11.12:*:*:*:*:*:*:*
linux linux_kernel 2.6.11_rc1_bk6 cpe:2.3:o:linux:linux_kernel:2.6.11_rc1_bk6:*:*:*:*:*:*:*
linux linux_kernel 2.6.12 cpe:2.3:o:linux:linux_kernel:2.6.12:*:*:*:*:*:*:*
linux linux_kernel 2.6.12 cpe:2.3:o:linux:linux_kernel:2.6.12:rc1:*:*:*:*:*:*
linux linux_kernel 2.6.12 cpe:2.3:o:linux:linux_kernel:2.6.12:rc2:*:*:*:*:*:*
linux linux_kernel 2.6.12 cpe:2.3:o:linux:linux_kernel:2.6.12:rc3:*:*:*:*:*:*

References for CVE-2007-2453

URL Tags
http://marc.info/?l=linux-kernel&m=118128610219959&w=2 Patch
http://marc.info/?l=linux-kernel&m=118128622431272&w=2 Patch
http://osvdb.org/37114
http://secunia.com/advisories/25596
http://secunia.com/advisories/25700
http://secunia.com/advisories/25961
http://secunia.com/advisories/26133
http://secunia.com/advisories/26139
http://secunia.com/advisories/26450
http://secunia.com/advisories/26620
http://secunia.com/advisories/26664
http://www.debian.org/security/2007/dsa-1356
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.21.4
http://www.mandriva.com/security/advisories?name=MDKSA-2007:171
http://www.mandriva.com/security/advisories?name=MDKSA-2007:196
http://www.mandriva.com/security/advisories?name=MDKSA-2007:216
http://www.novell.com/linux/security/advisories/2007_43_kernel.html
http://www.novell.com/linux/security/advisories/2007_51_kernel.html
http://www.securityfocus.com/bid/24390
http://www.securitytracker.com/id?1018248
http://www.ubuntu.com/usn/usn-470-1
http://www.ubuntu.com/usn/usn-486-1
http://www.ubuntu.com/usn/usn-489-1
http://www.vupen.com/english/advisories/2007/2105
https://exchange.xforce.ibmcloud.com/vulnerabilities/34781
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9960
https://rhn.redhat.com/errata/RHSA-2007-0376.html
cvelogic Threat Intelligence