Summary: | net-misc/stunnel <4.24: authentication with revoked certificates (CVE-2008-2420) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Christian Hoffmann (RETIRED) <hoffie> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | CC: | ramereth, ulm, zubator |
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | All | ||
URL: | http://stunnel.mirt.net/pipermail/stunnel-users/2008-May/001976.html | ||
Whiteboard: | C3 [glsa] | ||
Package list: | Runtime testing required: | --- |
Description
Christian Hoffmann (RETIRED)
2008-05-19 13:42:43 UTC
ramereth, please bump as necessary. I've bumped stunnel to version 4.25. *** Bug 225113 has been marked as a duplicate of this bug. *** ppc64 stable x86 stable alpha/sparc stable Stable for HPPA. ppc stable amd64 stable time for GLSA decision. I vote YES. ok then.... YES GLSA 200808-08 NB: The stunnel 3.x branch doesn't implement OCSP and is therefore not affected. |