Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[SECURITY] CVE-2019-16303 - JHipster Vulnerability Fix - Use CSPRNG in RandomUtil #1

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Commits on Sep 18, 2020

  1. CVE-2019-16303 - JHipster Vulnerability Fix - Use CSPRNG in RandomUtil

    This fixes a security vulnerability in this project where the `RandomUtil.java`
    file(s) were using an insecure Pseudo Random Number Generator (PRNG) instead of
    a Cryptographically Secure Pseudo Random Number Generator (CSPRNG) for
    security sensitive data.
    
    Signed-off-by: Jonathan Leitschuh <Jonathan.Leitschuh@gmail.com>
    JLLeitschuh committed Sep 18, 2020
    Configuration menu
    Copy the full SHA
    d4d91b6 View commit details
    Browse the repository at this point in the history