libice: weak entropy usage in session keys (CVE-2017-2626)
It was discovered that libICE depends on a weak entropy mechanism for
generating keys. A local attacker could
potentially forge session keys allowing them to send unauthorized messages to the desktop session manager.
1.0.9 and lower
(from redmine: issue id 6974, created on 2017-03-07)