Due to the way #SSL implemented in #MySQL, downgrade and #MITM possible with all versions. Affects #MariaDB also, though they are patching 10.1.x (and possibly 10.0.x and 5.5.x). *Patches may break existing applications that depend on prior behavior* See: http://url.federati.net/PFYrj