Lucene search
PRIOn knowledge basePRION:CVE-2015-8838HistoryMay 16, 2016 - 10:59 a.m.
Sql injection
2016-05-1610:59:00
PRIOn knowledge base
www.prio-n.com
7
ext/mysqlnd/mysqlnd.c in PHP before 5.4.43, 5.5.x before 5.5.27, and 5.6.x before 5.6.11 uses a client SSL option to mean that SSL is optional, which allows man-in-the-middle attackers to spoof servers via a cleartext-downgrade attack, a related issue to CVE-2015-3152.
References
git.php.net/?p=php-src.git;a=commit;h=97aa752fee61fccdec361279adbfb17a3c60f3f4
lists.opensuse.org/opensuse-security-announce/2016-04/msg00052.html
lists.opensuse.org/opensuse-security-announce/2016-04/msg00056.html
lists.opensuse.org/opensuse-security-announce/2016-04/msg00057.html
lists.opensuse.org/opensuse-security-announce/2016-04/msg00058.html
php.net/ChangeLog-5.php
www.ubuntu.com/usn/USN-2952-1
www.ubuntu.com/usn/USN-2952-2
bugs.php.net/bug.php?id=69669
Related
cve
cve
nvd
nvd
ubuntucve
ubuntucve
cvelist
cvelist
nessus
nessus
PHP 5.6.x < 5.6.11 Multiple Vulnerabilities (BACKRONYM)
2019-01-09 00:00:00
EulerOS 2.0 SP2 : php (EulerOS-SA-2020-1632)
2020-06-17 00:00:00
EulerOS 2.0 SP3 : php (EulerOS-SA-2021-1830)
2021-04-30 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for php (EulerOS-SA-2021-1830)
2021-05-03 00:00:00
Huawei EulerOS: Security Advisory for php (EulerOS-SA-2020-1632)
2020-06-16 00:00:00
Fedora Update for mariadb FEDORA-2015-10849
2015-07-07 00:00:00
freebsd
freebsd
mysql -- SSL Downgrade
2015-03-20 00:00:00
fedora
fedora
[SECURITY] Fedora 21 Update: mariadb-10.0.20-1.fc21
2015-07-10 19:10:52
[SECURITY] Fedora 22 Update: mariadb-10.0.20-1.fc22
2015-07-03 18:49:07
f5
f5
K16845 : MySQL vulnerability CVE-2015-3152
2015-07-02 00:00:00
SOL16845 - MySQL vulnerability CVE-2015-3152
2015-07-02 00:00:00
mariadbunix
mariadbunix
CVE-2015-3152
2016-05-16 10:59:00
prion
prion
Buffer overflow
2016-05-16 10:59:00
Sql injection
2017-07-01 18:29:00
redhatcve
redhatcve
CVE-2017-10789
2017-07-04 10:49:05
debiancve
debiancve
CVE-2017-10789
2017-07-01 18:29:00
osv
osv
CVE-2017-10789
2017-07-01 18:29:00
mariadb-10.0 - security update
2015-07-20 00:00:00
suse
suse
Security update for perl-DBD-mysql (moderate)
2018-05-29 18:07:51
Security update for php5 (important)
2016-04-27 23:07:43
Security update for php5 (important)
2016-04-28 19:08:05
debian
debian
[SECURITY] [DLA 1079-1] libdbd-mysql-perl security update
2017-08-31 11:58:27
[SECURITY] [DSA 3311-1] mariadb-10.0 security update
2015-07-20 05:25:41
[SECURITY] [DSA 3311-1] mariadb-10.0 security update
2015-07-20 05:25:41
amazon
amazon
mageia
mageia
Updated mariadb package fixes security vulnerabilities
2015-07-27 12:53:07
ubuntu
ubuntu
PHP vulnerabilities
2016-04-21 00:00:00
PHP regression
2016-04-27 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 3311-1] mariadb-10.0 security update
2015-07-20 00:00:00
Oracle / Sun / PeopleSoft / MySQL multiple security vulnerabilities
2015-07-20 00:00:00
slackware
slackware
[slackware-security] php
2015-07-17 20:25:21
redhat
redhat
(RHSA-2015:1665) Moderate: mariadb security update
2015-08-24 00:00:00
(RHSA-2015:1647) Moderate: mariadb55-mariadb security update
2015-08-20 00:00:00
(RHSA-2015:1646) Important: rh-mariadb100-mariadb security update
2015-08-20 00:00:00
oraclelinux
oraclelinux
mariadb security update
2015-08-24 00:00:00
centos
centos
mariadb security update
2015-08-25 16:08:22
veracode
veracode
Man-in-the-Middle Attack
2019-05-02 05:17:59
cloudlinux
cloudlinux
Fix of 227 CVE
2020-10-15 12:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1950
2021-07-02 17:57:45