mysqlnd is vulnerable to BACKRONYM (CVE-2015-8838)
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
php5 (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
Thats a security issue found on MySQL clients which also affects the PHP MySQL native driver.
It was already fixed on PHP sources: https:/
Description:
------------
mysqlnd is vulnerable to the attack described in https:/
mysqlnd allows downgrade to non-SSL connection even if SSL was requested.
Expected result:
----------------
Fail to connect if SSL is requested but not provided as capability by the server.
Actual result:
--------------
mysqlnd allows downgrade to non-SSL connection even if SSL was requested.
However, the fix was not backported to Ubuntu's PHP packages.
Before opening this bug I was trying to figure out why it didn't happen and I made the question on the following link, which gives more details:
https:/
CVE References
information type: | Private Security → Public Security |
Changed in php5 (Ubuntu): | |
status: | New → Confirmed |
I've asked MITRE if this needs a new CVE or not:
http:// www.openwall. com/lists/ oss-security/ 2016/03/ 31/10
Thanks