curl before version 7.52.1 is vulnerable to an uninitialized random in libcurl’s internal function that returns a good 32bit random value. Having a weak or virtually non-existent random value makes the operations that use it vulnerable.
CPE | Name | Operator | Version |
---|---|---|---|
curl | eq | 7.28.0-r0 | |
curl | eq | 7.21.1-r0 | |
curl | eq | curl-7_19_6 | |
curl | eq | before_urldata_rename | |
curl | eq | 7.47.0-r0 | |
curl | eq | 7.49.1-r2 | |
curl | eq | curl-7_9_7 | |
curl | eq | 7.28.1-r0 | |
curl | eq | curl-7_16_0 | |
curl | eq | curl-7_45_0 |