Gentoo Bug 204337 - Mozilla Browsers SSL subjectAltName:dNSName certificate spoofing (CVE-2008-2809)

First Last Prev Next No search results available Search page Enter new bug

Bug#:	204337
Alias:
Product:
Component:
Status:	RESOLVED
Resolution:	FIXED
Assigned To:	Gentoo Security <security@gentoo.org>

Hardware:
OS:
Version:
Priority:
Severity:

Reporter:	Robert Buchholz <rbu@gentoo.org>
Add CC:
CC:	Remove selected CCs

URL:
Summary:
Status Whiteboard:
Keywords:

Flags:			Requestee:
	Pending
	Approved
	Assigned_To		()

Filename	Description	Type	Creator	Created	Size	Actions
Create a New Attachment (proposed patch, testcase, etc.)						View All

Bug 204337 depends on:	230567		Show dependency tree
Bug 204337 blocks:			Show dependency tree

Additional Comments: (this is where you put emerge --info)

Add to CC list

Not eligible to see or edit group visibility for this bug.

Leave as RESOLVED FIXED
Reopen bug
Mark bug as VERIFIED
Mark bug as CLOSED

View Bug Activity | Format For Printing | XML | Clone This Bug

Description:

Opened: 2008-01-04 22:28 0000

CVE-2007-6590 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-6590):
  Mozilla 1.9 M8 and earlier, Mozilla Firefox 2, SeaMonkey 1.1.5, Netscape 9.0,
  and other Mozilla-based web browsers, when a user accepts an SSL server
  certificate on the basis of the CN domain name in the DN field, regard the
  certificate as also accepted for all domain names in subjectAltName:dNSName
  fields, which makes it easier for remote attackers to trick a user into
  accepting an invalid certificate for a spoofed web site.

------- Comment #1 From Robert Buchholz 2008-01-04 22:56:41 0000 -------

Reproducer
  http://test.eonis.net/

Advisory
  http://nils.toedtmann.net/pub/subjectAltName.txt

Upstream bug
  https://bugzilla.mozilla.org/show_bug.cgi?id=240261

------- Comment #2 From Raúl Porcel 2008-01-05 11:57:42 0000 -------

Heh, this bug is from 2004...

------- Comment #3 From Raúl Porcel 2008-07-18 17:21:11 0000 -------

This was fixed in 1.8.1.15

------- Comment #4 From Robert Buchholz 2008-07-30 18:49:16 0000 -------

CVE-2007-6590 is now rejected, use CVE-2008-2809.

------- Comment #5 From Robert Buchholz 2008-08-06 00:43:02 0000 -------

GLSA 200808-03

First Last Prev Next No search results available Search page Enter new bug

Bugzilla Bug 204337

Mozilla Browsers SSL subjectAltName:dNSName certificate spoofing (CVE-2008-2809)

Last modified: 2008-08-06 00:43:02 0000