oss-sec mailing list archives
CVE Request: static IV used in Percona XtraBackup
From: Marcus Meissner <meissner () suse de>
Date: Tue, 26 Nov 2013 11:52:29 +0100
Hi, This came to our desk: https://bugzilla.novell.com/show_bug.cgi?id=852224 https://bugs.launchpad.net/percona-xtrabackup/+bug/1185343 constant IV used in CTR Mode, allowing plaintext retrieval attacks. I think it needs a CVE. Ciao, Marcus
Current thread:
- CVE Request: static IV used in Percona XtraBackup Marcus Meissner (Nov 26)
- Re: CVE Request: static IV used in Percona XtraBackup Kurt Seifried (Nov 26)
- Re: CVE Request: static IV used in Percona XtraBackup P J P (Nov 27)
- Re: CVE Request: static IV used in Percona XtraBackup Florian Weimer (Nov 26)
- Re: CVE Request: static IV used in Percona XtraBackup Michael Samuel (Nov 26)
- Re: CVE Request: static IV used in Percona XtraBackup Kurt Seifried (Nov 26)