Launchpad.net

CVE 2015-1027

The version checking subroutine in percona-toolkit before 2.2.13 and xtrabackup before 2.2.9 was vulnerable to silent HTTP downgrade attacks and Man In The Middle attacks in which the server response could be modified to allow the attacker to respond with modified command payload and have the client return additional running configuration information leading to an information disclosure of running configuration of MySQL.

Related bugs and status

CVE-2015-1027 (Candidate) is related to these bugs:

Bug #1408375: vulnerable to MITM attack which would allow exfiltration of MySQL configuration information via --version-check

		In	Importance	Status
1408375	vulnerable to MITM attack which would allow exfiltration of MySQL configuration information via --version-check	Percona Toolkit moved to https://jira.percona.com/projects/PT	High	Fix Released
1408375	vulnerable to MITM attack which would allow exfiltration of MySQL configuration information via --version-check	Percona XtraBackup moved to https://jira.percona.com/projects/PXB	High	Fix Released
1408375	vulnerable to MITM attack which would allow exfiltration of MySQL configuration information via --version-check	Percona XtraBackup moved to https://jira.percona.com/projects/PXB 2.3	High	Fix Released
1408375	vulnerable to MITM attack which would allow exfiltration of MySQL configuration information via --version-check	Percona XtraBackup moved to https://jira.percona.com/projects/PXB 2.2	High	Fix Released

See the

CVE page on Mitre.org for more details.

References

CONFIRM: https://bugs.launchpad...
CONFIRM: https://www.percona.co...