Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2015-8867HistoryMay 22, 2016 - 1:59 a.m.
CVE-2015-8867
2016-05-2201:59:00
Debian Security Bug Tracker
security-tracker.debian.org
14
EPSS
0.008
Percentile
81.3%
The openssl_random_pseudo_bytes function in ext/openssl/openssl.c in PHP before 5.4.44, 5.5.x before 5.5.28, and 5.6.x before 5.6.12 incorrectly relies on the deprecated RAND_pseudo_bytes function, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via unspecified vectors.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 9 | all | php7.0 | < 7.0.33-0+deb9u8 | php7.0_7.0.33-0+deb9u8_all.deb |
Related
cvelist
cvelist
CVE-2015-8867
2016-05-22 01:00:00
prion
prion
Design/Logic Flaw
2016-05-22 01:59:00
cve
cve
CVE-2015-8867
2016-05-22 01:59:06
ubuntucve
ubuntucve
CVE-2015-8867
2016-05-22 00:00:00
nvd
nvd
CVE-2015-8867
2016-05-22 01:59:06
nessus
nessus
PHP 5.4.x < 5.4.44 Multiple Vulnerabilities
2015-08-11 00:00:00
PHP 7.0.x < 7.0.0 Multiple Vulnerabilities
2019-03-01 00:00:00
SUSE SLES11 Security Update : php53 (SUSE-SU-2016:1310-1)
2016-05-19 00:00:00
openvas
openvas
PHP < 5.4.44, 5.5.x < 5.5.28, 5.6.x < 5.6.12 Multiple Vulnerabilities (Jul 2016) - Windows
2016-07-14 00:00:00
SUSE: Security Advisory (SUSE-SU-2016:1310-1)
2021-06-09 00:00:00
suse
suse
Security update for php5 (important)
2016-05-20 15:09:02
Security update for php5 (important)
2016-05-11 18:07:54
Security update for php5 (important)
2016-05-11 14:07:47
cloudlinux
cloudlinux
Fix of 227 CVE
2020-10-15 12:00:00
veracode
veracode
XML External Entity (XXE)
2019-05-02 06:02:16
Out-Of-Bounds Write
2019-05-02 06:02:25
Denial Of Service (DoS)
2019-05-02 06:02:17
redhat
redhat
rosalinux
rosalinux
Advisory ROSA-SA-2021-1950
2021-07-02 17:57:45