Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2009-4028

The vio_verify_callback function in viosslfactories.c in MySQL 5.0.x before 5.0.88 and 5.1.x before 5.1.41, when OpenSSL is used, accepts a value of zero for the depth of X.509 certificates, which allows man-in-the-middle attackers to spoof arbitrary SSL-based MySQL servers via a crafted certificate, as demonstrated by a certificate presented by a server linked against the yaSSL library.

Related bugs and status

CVE-2009-4028 (Candidate) is related to these bugs:

Bug #670898: MySQL in Hardy is vulnerable to CVE-2009-4028

Summary				In	Importance	Status
	670898	MySQL in Hardy is vulnerable to CVE-2009-4028		mysql-dfsg-5.0 (Ubuntu)	Undecided	Won't Fix

See the

CVE page on Mitre.org for more details.

References

MISC: http://www.vupen.com/e...
MISC: http://www.redhat.com/...
MISC: http://lists.opensuse....
MISC: http://lists.mysql.com...
MISC: http://www.openwall.co...
MISC: http://marc.info/?l=os...
MISC: http://www.openwall.co...
MISC: http://bugs.mysql.com/...
MISC: http://dev.mysql.com/d...
MISC: http://dev.mysql.com/d...
MISC: https://oval.cisecurit...
MISC: https://oval.cisecurit...