Cryptographic issues in MariaDB and mysql - CVE-2016-7440
Published: December 13, 2016 / Updated: August 4, 2020
Vulnerability identifier: #VU33601
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2016-7440
CWE-ID: CWE-310
Exploitation vector: Local access
Exploit availability:
No public exploit available
Vendor: MariaDB Foundation
Google
Affected software:
MariaDB
mysql
MariaDB
mysql
Detailed vulnerability description
The vulnerability allows a local authenticated user to gain access to sensitive information.
The C software implementation of AES Encryption and Decryption in wolfSSL (formerly CyaSSL) before 3.9.10 makes it easier for local users to discover AES keys by leveraging cache-bank timing differences.
How to mitigate CVE-2016-7440
Install update from vendor's website.
Sources
- http://www.debian.org/security/2016/dsa-3706
- http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html
- http://www.securityfocus.com/bid/93659
- http://www.securitytracker.com/id/1037050
- https://mariadb.com/kb/en/mariadb/mariadb-10028-release-notes/
- https://wolfssl.com/wolfSSL/Blog/Entries/2016/9/26_wolfSSL_3.9.10_Vulnerability_Fixes.html