CVE-2016-2047
27.01.2016, 20:59
The ssl_verify_server_cert function in sql-common/client.c in MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10; Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier; and Percona Server do not properly verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via a "/CN=" string in a field in a certificate, as demonstrated by "/OU=/CN=bar.com/CN=foo.com."Enginsight
Vendor | Product | Version |
---|---|---|
mariadb | mariadb | 5.5.20 ≤ 𝑥 < 5.5.47 |
mariadb | mariadb | 10.0.0 ≤ 𝑥 < 10.0.23 |
mariadb | mariadb | 10.1.0 ≤ 𝑥 < 10.1.10 |
oracle | mysql | 5.5.0 ≤ 𝑥 ≤ 5.5.48 |
oracle | mysql | 5.6.0 ≤ 𝑥 ≤ 5.6.29 |
oracle | mysql | 5.7.0 ≤ 𝑥 ≤ 5.7.11 |
opensuse | leap | 42.1 |
redhat | enterprise_linux | 6.0 |
redhat | enterprise_linux | 7.0 |
debian | debian_linux | 8.0 |
debian | debian_linux | 9.0 |
canonical | ubuntu_linux | 12.04 |
canonical | ubuntu_linux | 14.04 |
canonical | ubuntu_linux | 15.10 |
canonical | ubuntu_linux | 16.04 |
𝑥
= Vulnerable software versions

Ubuntu Releases
Ubuntu Product | |||||||||||||||||||||||||||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
mariadb-10.0 |
| ||||||||||||||||||||||||||||||||||||||||||
mariadb-5.5 |
| ||||||||||||||||||||||||||||||||||||||||||
mysql-5.5 |
| ||||||||||||||||||||||||||||||||||||||||||
mysql-5.6 |
| ||||||||||||||||||||||||||||||||||||||||||
mysql-5.7 |
| ||||||||||||||||||||||||||||||||||||||||||
mysql-8.0 |
| ||||||||||||||||||||||||||||||||||||||||||
percona-server-5.6 |
| ||||||||||||||||||||||||||||||||||||||||||
percona-xtradb-cluster-5.5 |
| ||||||||||||||||||||||||||||||||||||||||||
percona-xtradb-cluster-5.6 |
|
Common Weakness Enumeration
References