mysqlnd is vulnerable to BACKRONYM (CVE-2015-8838)
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| php5 (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Bug Description
Thats a security issue found on MySQL clients which also affects the PHP MySQL native driver.
It was already fixed on PHP sources: https:/
Description:
------------
mysqlnd is vulnerable to the attack described in https:/
mysqlnd allows downgrade to non-SSL connection even if SSL was requested.
Expected result:
----------------
Fail to connect if SSL is requested but not provided as capability by the server.
Actual result:
--------------
mysqlnd allows downgrade to non-SSL connection even if SSL was requested.
However, the fix was not backported to Ubuntu's PHP packages.
Before opening this bug I was trying to figure out why it didn't happen and I made the question on the following link, which gives more details:
https:/
CVE References
| information type: | Private Security → Public Security |
| Seth Arnold (seth-arnold) wrote | #1 |
| Seth Arnold (seth-arnold) wrote | #2 |
| summary: |
- mysqlnd is vulnerable to BACKRONYM (CVE-2015-3152) + mysqlnd is vulnerable to BACKRONYM (CVE-2015-8838) |
| Changed in php5 (Ubuntu): | |
| status: | New → Confirmed |
| Marc Deslauriers (mdeslaur) wrote | #3 |
| Changed in php5 (Ubuntu): | |
| status: | Confirmed → Fix Released |
I've asked MITRE if this needs a new CVE or not:
http://
Thanks