[Bug 1534203] [NEW] openssl_random_pseudo_bytes() security bug and PHP packages
vinc-q
1534203 at bugs.launchpad.net
Thu Jan 14 15:25:50 UTC 2016
*** This bug is a security vulnerability ***
Public security bug reported:
Maybe Ubuntu official PHP packages aren't patched against openssl_random_pseudo_bytes() security bug (https://bugs.php.net/bug.php?id=70014). The vulnerability is corrected in the versions
5.6.12, 5.5.28, 5.4.44, so it might be still affecting the currently supported Ubuntu PHP packages (5.6.11, 5.6.4, 5.5.9).
** Affects: php5 (Ubuntu)
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to php5 in Ubuntu.
https://bugs.launchpad.net/bugs/1534203
Title:
openssl_random_pseudo_bytes() security bug and PHP packages
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/php5/+bug/1534203/+subscriptions
More information about the Ubuntu-server-bugs
mailing list