MySQL OpenSSL Server Certificate yaSSL Security Bypass Vulnerability

Bugtraq ID: 37076
Class: Design Error
CVE: CVE-2009-4028
Remote: Yes
Local: No
Published: Nov 19 2009 12:00AM
Updated: Apr 13 2015 09:44PM
Credit: <br>Reported by the vendor
Vulnerable: SuSE SUSE Linux Enterprise 11
SuSE SUSE Linux Enterprise 10 SP3
SuSE SUSE Linux Enterprise 10 SP2
S.u.S.E. openSUSE 11.2
S.u.S.E. openSUSE 11.1
S.u.S.E. openSUSE 11.0
rPath rPath Linux 2
rPath rPath Linux 1
rPath Appliance Platform Linux Service 2
rPath Appliance Platform Linux Service 1
RedHat Enterprise Linux Desktop Workstation 5 client
Red Hat Enterprise Linux EUS 5.4.z server
Red Hat Enterprise Linux Desktop 5 client
Red Hat Enterprise Linux 5 Server
Pardus Linux 2009 0
MySQL AB MySQL 5.1.39
MySQL AB MySQL 5.1.38
MySQL AB MySQL 5.1.37
MySQL AB MySQL 5.1.36
MySQL AB MySQL 5.1.35
MySQL AB MySQL 5.1.34
MySQL AB MySQL 5.1.33
MySQL AB MySQL 5.1.32
MySQL AB MySQL 5.1.31
MySQL AB MySQL 5.1.30
MySQL AB MySQL 5.1.26
MySQL AB MySQL 5.1.23
MySQL AB MySQL 5.1.22
MySQL AB MySQL 5.1.18
MySQL AB MySQL 5.1.17
MySQL AB MySQL 5.1.16
MySQL AB MySQL 5.1.15
MySQL AB MySQL 5.1.14
MySQL AB MySQL 5.1.13
MySQL AB MySQL 5.1.12
MySQL AB MySQL 5.1.11
MySQL AB MySQL 5.1.10
MySQL AB MySQL 5.1.9
MySQL AB MySQL 5.1.6
MySQL AB MySQL 5.1.5
Mandriva Linux Mandrake 2010.0 x86_64
Mandriva Linux Mandrake 2010.0
Mandriva Linux Mandrake 2009.1 x86_64
Mandriva Linux Mandrake 2009.1
Mandriva Linux Mandrake 2009.0 x86_64
Mandriva Linux Mandrake 2009.0
Mandriva Linux Mandrake 2008.0 x86_64
Mandriva Linux Mandrake 2008.0
MandrakeSoft Enterprise Server 5 x86_64
MandrakeSoft Enterprise Server 5
MandrakeSoft Corporate Server 4.0 x86_64
MandrakeSoft Corporate Server 4.0
Gentoo Linux
Not Vulnerable: MySQL AB MySQL 5.1.41


 

Privacy Statement
Copyright 2010, SecurityFocus