Oracle MySQL CVE-2018-2767 Incomplete Fix SSL Certificate Validation Security Bypass Vulnerability

Bugtraq ID: 103954
Class: Input Validation Error
CVE: CVE-2018-2767
Remote: Yes
Local: No
Published: Apr 08 2018 12:00AM
Updated: Jul 19 2018 04:00AM
Credit: The vendor reported this issue.
Vulnerable: Redhat OpenStack Platform 9.0
Redhat OpenStack Platform 8.0 (Liberty)
Redhat OpenStack Platform 12
Redhat OpenStack Platform 11
Redhat OpenStack Platform 10
Redhat Enterprise Linux OpenStack Platform 7.0 (Kilo) for RHEL 7
Oracle MySQL Server 5.7.22
Oracle MySQL Server 5.7.21
Oracle MySQL Server 5.7.20
Oracle MySQL Server 5.7.19
Oracle MySQL Server 5.7.18
Oracle MySQL Server 5.7.17
Oracle MySQL Server 5.7.16
Oracle MySQL Server 5.7.15
Oracle MySQL Server 5.7.12
Oracle MySQL Server 5.7
Oracle MySQL Server 5.6.40
Oracle MySQL Server 5.6.39
Oracle MySQL Server 5.6.38
Oracle MySQL Server 5.6.37
Oracle MySQL Server 5.6.36
Oracle MySQL Server 5.6.35
Oracle MySQL Server 5.6.34
Oracle MySQL Server 5.6.33
Oracle MySQL Server 5.6.30
Oracle MySQL Server 5.6.29
Oracle MySQL Server 5.6.28
Oracle MySQL Server 5.6.27
Oracle MySQL Server 5.6.26
Oracle MySQL Server 5.6.23
Oracle MySQL Server 5.6.22
Oracle MySQL Server 5.6.21
Oracle MySQL Server 5.5.60
Oracle MySQL Server 5.5.59
Oracle MySQL Server 5.5.58
Oracle MySQL Server 5.5.57
Oracle MySQL Server 5.5.56
Oracle MySQL Server 5.5.55
Oracle MySQL Server 5.5.54
Oracle MySQL Server 5.5.53
Oracle MySQL Server 5.5.52
Oracle MySQL Server 5.5.48
Oracle MySQL Server 5.5.47
Oracle MySQL Server 5.5.46
Oracle MySQL Server 5.5.45
Oracle MySQL Server 5.5.42
Oracle MySQL Server 5.5.41
Oracle MySQL Server 5.5.40
Oracle MySQL Server 5.6.25
Oracle MySQL Server 5.6.24
Oracle MySQL Server 5.6.20
Oracle MySQL Server 5.6.16
Oracle MySQL Server 5.6.15
Oracle MySQL Server 5.5.44
Oracle MySQL Server 5.5.43
Oracle MySQL Server 5.5.36
Oracle MySQL Server 5.5.35
Oracle Mysql 5.5
MariaDB MariaDB 5.5
MariaDB MariaDB 10.3
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus