Oval Definition:	oval:org.opensuse.security:def:20072727
Revision Date: 2015-11-16 Version: 1 Title: CVE-2007-2727 Description: The mcrypt_create_iv function in ext/mcrypt/mcrypt.c in PHP before 4.4.7, 5.2.1, and possibly 5.0.x and other PHP 5 versions, calls php_rand_r with an uninitialized seed variable and therefore always generates the same initialization vector (IV), which might allow context-dependent attackers to decrypt certain data more easily because of the guessable encryption keys. Family: unix Class: vulnerability Status: Reference(s): CVE-2007-2727 Platform(s): Open Enterprise Server openSUSE 10.2 SUSE CORE 9 for AMD64 and Intel EM64T SUSE CORE 9 for IBM POWER SUSE CORE 9 for IBM S/390 31bit SUSE CORE 9 for IBM zSeries 64bit SUSE CORE 9 for Itanium Processor Family SUSE CORE 9 for x86 SUSE LINUX 10.0 SUSE LINUX 10.1 SuSE Linux Enterprise Server 8 for AMD64 SuSE Linux Enterprise Server 8 for IBM iSeries and IBM pSeries SuSE Linux Enterprise Server 8 for IBM zSeries SuSE Linux Enterprise Server 8 for IPF SuSE Linux Openexchange Server 4 SUSE LINUX Retail Solution 8 SuSE Linux School Server for i386 SuSE Linux Standard Server 8 UnitedLinux 1.0 Product(s):
BACK