Bugzilla – Bug 863974
VUL-1: CVE-2014-0083: rubygem-net-ldap: weak salt in password generation
Last modified: 2015-03-05 14:53:53 UTC
The salting inside password.rb is insufficient as the random salt can only be between 0 and 999.
> salt = (rand * 1000).to_i.to_s
SLE and openSUSE are not affected as the salting feature is not included.
CVE-2014-0083 was assigned to this issue.
Closed. Fixed upstream.