CVE-2018-25107

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2018-25107

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-25107.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2018-25107

Related

UBUNTU-CVE-2018-25107

Published

2024-12-29T07:15:05Z

Modified

2025-02-14T10:32:33.068606Z

Summary

[none]

Details

The Crypt::Random::Source package before 0.13 for Perl has a fallback to the built-in rand() function, which is not a secure source of random bits.

References

Affected packages

Debian:11 / libcrypt-random-source-perl

Package

Name: libcrypt-random-source-perl
Purl: pkg:deb/debian/libcrypt-random-source-perl?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.14-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:12 / libcrypt-random-source-perl

Package

Name: libcrypt-random-source-perl
Purl: pkg:deb/debian/libcrypt-random-source-perl?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.14-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:13 / libcrypt-random-source-perl

Package

Name: libcrypt-random-source-perl
Purl: pkg:deb/debian/libcrypt-random-source-perl?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.14-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Git / github.com/karenetheridge/crypt-random-source

Affected ranges

Type: GIT
Repo: https://github.com/karenetheridge/crypt-random-source
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

ebe7b83dda3479157c100f2340780ea6a8b92b10

Affected versions

Crypt-Random-Source-0.*

Crypt-Random-Source-0.01

Crypt-Random-Source-0.01_01

Crypt-Random-Source-0.02

Crypt-Random-Source-0.03

Crypt-Random-Source-0.04

Crypt-Random-Source-0.05

v0.*

v0.06

v0.07

v0.08

v0.09

v0.10

v0.11

v0.12