CVE-2016-9594

curl before version 7.52.1 is vulnerable to an unitialized random in libcurl’s internal function that returns a good 32bit random value. Having a weak or virtually non-existent random value makes the operations that use it vulnerable.

Source: CVE-2016-9594