Описание
Percona XtraBackup before 2.1.6 uses a constant string for the initialization vector (IV), which makes it easier for local users to defeat cryptographic protection mechanisms and conduct plaintext attacks.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 2.1.8-1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was not-affected [2.1.8-1]] |
| lucid | DNE | |
| precise | DNE | |
| quantal | DNE | |
| raring | DNE | |
| saucy | ignored | end of life |
| trusty | not-affected | 2.1.8-1 |
| trusty/esm | DNE | trusty was not-affected [2.1.8-1] |
| upstream | released | 2.1.6 |
Показывать по
Ссылки на источники
EPSS
2.1 Low
CVSS2
Связанные уязвимости
Percona XtraBackup before 2.1.6 uses a constant string for the initialization vector (IV), which makes it easier for local users to defeat cryptographic protection mechanisms and conduct plaintext attacks.
Percona XtraBackup before 2.1.6 uses a constant string for the initial ...
Percona XtraBackup before 2.1.6 uses a constant string for the initialization vector (IV), which makes it easier for local users to defeat cryptographic protection mechanisms and conduct plaintext attacks.
EPSS
2.1 Low
CVSS2