In JetBrains Ktor Native before version 2.0.0 random values used for nonce generation weren't using SecureRandom implementations
The product uses insufficiently random numbers or values in a security context that depends on unpredictable numbers.
Link | Tags |
---|---|
https://www.jetbrains.com/privacy-security/issues-fixed/ | third party advisory patch |
https://github.com/ktorio/ktor/pull/2776 | third party advisory patch |