CVE-2025-7394

NameCVE-2025-7394
DescriptionIn the OpenSSL compatibility layer implementation, the function RAND_poll() was not behaving as expected and leading to the potential for predictable values returned from RAND_bytes() after fork() is called. This can lead to weak or predictable random numbers generated in applications that are both using RAND_bytes() and doing fork() operations. This only affects applications explicitly calling RAND_bytes() after fork() and does not affect any internal TLS operations. Although RAND_bytes() documentation in OpenSSL calls out not being safe for use with fork() without first calling RAND_poll(), an additional code change was also made in wolfSSL to make RAND_bytes() behave similar to OpenSSL after a fork() call without calling RAND_poll(). Now the Hash-DRBG used gets reseeded after detecting running in a new process. If making use of RAND_bytes() and calling fork() we recommend updating to the latest version of wolfSSL. Thanks to Per Allansson from Appgate for the report.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
Debian Bugs1109549

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
wolfssl (PTS)bullseye4.6.0+p1-0+deb11u2vulnerable
bookworm5.5.4-2+deb12u2fixed
trixie5.7.2-0.1+deb13u1fixed
forky, sid5.8.2-1.2fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
wolfsslsourceexperimental5.7.2-0.3
wolfsslsourcebookworm5.5.4-2+deb12u2
wolfsslsourcetrixie5.7.2-0.1+deb13u1
wolfsslsource(unstable)5.7.2-0.41109549

Notes

https://github.com/wolfSSL/wolfssl/pull/8849
Fixed by: https://github.com/wolfSSL/wolfssl/commit/0c12337194ee6dd082f082f0ccaed27fc4ee44f5 (v5.8.2-stable)
https://github.com/wolfSSL/wolfssl/pull/8867
Fixed by (merge commit): https://github.com/wolfSSL/wolfssl/commit/6571f42cb9d73589510d139a09095209a760df5b (v5.8.2-stable)
https://github.com/wolfSSL/wolfssl/pull/8898
Fixed by (merge commit): https://github.com/wolfSSL/wolfssl/commit/978a29da0b76eb868748967f4cb74421dc2382a2 (v5.8.2-stable)
https://github.com/wolfSSL/wolfssl/blob/master/ChangeLog.md#wolfssl-release-582-july-17-2025

Search for package or bug name: Reporting problems