The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a database and tools to fix them.

Computer vulnerabilities of XtraBackup

computer vulnerability bulletin 22268

Percona XtraBackup: information disclosure via Ps Command Line

Synthesis of the vulnerability

An attacker can bypass access restrictions to data via Ps Command Line of Percona XtraBackup, in order to obtain sensitive information.
Impacted products: openSUSE Leap, XtraBackup.
Severity: 1/4.
Consequences: data reading.
Provenance: user shell.
Creation date: 28/03/2017.
Identifiers: openSUSE-SU-2017:0830-1, VIGILANCE-VUL-22268.

Description of the vulnerability

An attacker can bypass access restrictions to data via Ps Command Line of Percona XtraBackup, in order to obtain sensitive information.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability announce CVE-2016-6225

Percona XtraBackup: information disclosure via Xbcrypt Encryption IV

Synthesis of the vulnerability

An attacker can bypass access restrictions to data via Xbcrypt Encryption IV of Percona XtraBackup, in order to obtain sensitive information.
Impacted products: Fedora, openSUSE Leap, XtraBackup.
Severity: 1/4.
Consequences: data reading.
Provenance: document.
Creation date: 23/01/2017.
Identifiers: CVE-2016-6225, FEDORA-2017-5a823376be, FEDORA-2017-6382ea8d57, openSUSE-SU-2017:0250-1, openSUSE-SU-2017:0251-1, VIGILANCE-VUL-21657.

Description of the vulnerability

An attacker can bypass access restrictions to data via Xbcrypt Encryption IV of Percona XtraBackup, in order to obtain sensitive information.
Full Vigil@nce bulletin... (Free trial)
Our database contains other pages. You can request a free trial to read them.

Display information about XtraBackup: