[Fedora-i18n-bugs] [Bug 604855] CVE-2010-2074 w3m: doesn't handle NULL in Common Name properly
bugzilla at redhat.com
bugzilla at redhat.com
Wed Jun 16 21:05:18 UTC 2010
Please do not reply directly to this email. All additional
comments should be made in the comments box of this bug.
https://bugzilla.redhat.com/show_bug.cgi?id=604855
--- Comment #3 from Vincent Danen <vdanen at redhat.com> 2010-06-16 17:05:14 EDT ---
Created an attachment (id=424591)
--> (https://bugzilla.redhat.com/attachment.cgi?id=424591)
patch to force ssl_verify_server on and disable SSLv2 support
Patch provided by Ludwig Nussel from the SUSE security team. We don't
necessarily need this to enable SSL verification as we do that already, however
this patch also disables the use of SSLv2 which we may want.
--
Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.
More information about the i18n-bugs
mailing list