Download
| Alert*
oval:org.secpod.oval:def:64168
glib-networking: Network extensions for GLib Fraudulent security certificates could allow sensitive information to be exposed when accessing the Internet. oval:org.secpod.oval:def:89045818 This update for glib-networking fixes the following issues: - CVE-2020-13645: Fixed a connection failure when the server identity is unset . oval:org.secpod.oval:def:89045872 This update for glib-networking fixes the following issues: - CVE-2020-13645: Fixed a connection failure when the server identity is unset . oval:org.secpod.oval:def:118357 This package contains modules that extend the networking support in GIO. oval:org.secpod.oval:def:118353 This package contains modules that extend the networking support in GIO. oval:org.secpod.oval:def:118363 This package contains modules that extend the networking support in GIO. In particular, it contains libproxy- and GSettings-based GProxyResolver implementations and a gnutls-based GTlsConnection implementation. oval:org.secpod.oval:def:2106112 Oracle Solaris 11 - ( CVE-2020-13645 ) oval:org.secpod.oval:def:89047208 This update for glib-networking fixes the following issues: Update to version 2.62.4: - CVE-2020-13645: Fixed a connection failure when the server identity is unset . oval:org.secpod.oval:def:705524 glib-networking: Network extensions for GLib Fraudulent security certificates could allow sensitive information to be exposed when accessing the Internet. oval:org.secpod.oval:def:2004104 In GNOME glib-networking through 2.64.2, the implementation of GTlsClientConnection skips hostname verification of the server"s TLS certificate if the application fails to specify the expected server identity. This is in contrast to its intended documented behavior, to fail the certificate verificat ... |