Bug#547217: webkit: potential ssl certificate attack

Michael Gilbert michael.s.gilbert at gmail.com
Thu Sep 17 19:56:23 UTC 2009

package: webkit
version: 1.1.12-1+b1
severity: serious
tags: security


i was listening to a pauldotcom episode, and heard that webkit may be
susceptible to ssl certificate attacks due to null-character stripping
[0].  please check whether this is a problem, and if it is forward
upstream if necessary.

best wishes,

[0] http://pauldotcom.com/2009/09/pauldotcom-security-weekly--e-25.html

More information about the Pkg-webkit-maintainers mailing list