2.4.2

DATE	CVE	VULNERABILITY TITLE	RISK
2017-03-23	CVE-2016-6225	Inadequate Encryption Strength vulnerability in multiple products xbcrypt in Percona XtraBackup before 2.3.6 and 2.4.x before 2.4.5 does not properly set the initialization vector (IV) for encryption, which makes it easier for context-dependent attackers to obtain sensitive information from encrypted backup files via a Chosen-Plaintext attack. network high complexity percona opensuse fedoraproject CWE-326	5.9