Bug#672880: CVE-2012-2132: does not indicate whether or not an SSL certificate is valid
Henri Salo
henri at nerv.fi
Mon May 14 12:29:05 UTC 2012
Package: libsoup2.4-1
Version: 2.30.2-1+squeeze1
Severity: important
Tags: security
References:
https://bugzilla.novell.com/show_bug.cgi?id=758431
https://bugzilla.redhat.com/show_bug.cgi?id=817692
This needs verification. Please ask if you need my help.
-- System Information:
Debian Release: 6.0.5
APT prefers stable-updates
APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)
Kernel: Linux 2.6.32-5-amd64 (SMP w/8 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to en_US.UTF-8)
Shell: /bin/sh linked to /bin/dash
Versions of packages libsoup2.4-1 depends on:
ii libc6 2.11.3-3 Embedded GNU C Library: Shared lib
ii libgcrypt11 1.4.5-2 LGPL Crypto library - runtime libr
ii libglib2.0-0 2.24.2-1 The GLib library of C routines
ii libgnutls26 2.8.6-1+squeeze2 the GNU TLS library - runtime libr
ii libxml2 2.7.8.dfsg-2+squeeze3 GNOME XML library
ii zlib1g 1:1.2.3.4.dfsg-3 compression library - runtime
libsoup2.4-1 recommends no packages.
libsoup2.4-1 suggests no packages.
-- no debconf information
More information about the pkg-gnome-maintainers
mailing list