Novell Home

CVE-2013-6394

Common Vulnerabilities and Exposures

[Previous] [Index] [Next]

Upstream information

CVE-2013-6394 at MITRE

Description

Percona XtraBackup before 2.1.6 uses a constant string for the initialization vector (IV), which makes it easier for local users to defeat cryptographic protection mechanisms and conduct plaintext attacks.

NVD CVSS v2 Base Score: 2.1 (AV:L/AC:L/Au:N/C:N/I:P/A:N)

SUSE information

SUSE Bugzilla entries: 852224, 860488

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
openSUSE 13.1
  • xtrabackup >= 2.1.7-9.1
  • xtrabackup-debuginfo >= 2.1.7-9.1
  • xtrabackup-debugsource >= 2.1.7-9.1
Patchnames:
openSUSE-2013-963
openSUSE-2014-137

© 2015 Novell