Bug#702976: CVE-2010-3312
Sébastien Villemot
sebastien at debian.org
Wed Mar 13 21:12:25 UTC 2013
Le mercredi 13 mars 2013 à 11:58 -0600, Vincent Danen a écrit :
> This issue was given the name CVE-2010-3312 quite a while ago. See
> https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-3312 for more info.
I don’t think this is the same issue. The problem reported here is
specifically about redirections, while CVE-2010-3312 (#564690 in Debian)
was about *never* verifying SSL certs (and is now fixed).
--
.''`. Sébastien Villemot
: :' : Debian Developer
`. `' http://www.dynare.org/sebastien
`- GPG Key: 4096R/381A7594
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: This is a digitally signed message part
URL: <http://lists.alioth.debian.org/pipermail/pkg-gnome-maintainers/attachments/20130313/b3c0a4a2/attachment.pgp>
More information about the pkg-gnome-maintainers
mailing list