Various trusted assets are downloaded from gentoo.org, such as metadata.dtd, that are then passed to programs such as xmllint. Gentoo.org might benefit from having an SSL certificate to make such downloads more secure. Reproducible: Always
This has been assigned CVE-2013-2100.
This also affects Layman. http://www.gentoo.org/proj/en/overlays/repositories.xml
www.gentoo.org has an SSL cert from DigiCert. You MUST support SNI.