CVE-2013-4345 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-4345): Off-by-one error in the get_prng_bytes function in crypto/ansi_cprng.c in the Linux kernel through 3.11.4 makes it easier for context-dependent attackers to defeat cryptographic protection mechanisms via multiple requests for small amounts of data, leading to improper management of the state of the consumed data.
Fix in 3.12.2 onwards as 714b33d15130cbb5ab426456d4e3de842d6c5b8a