|
|
Subscribe / Log in / New account

stunnel: certificate verification issue

Package(s):stunnel CVE #(s):CVE-2008-2420
Created:May 30, 2008 Updated:August 14, 2008
Description: From the Red Hat alert: The OCSP functionality in stunnel before 4.24 does not properly search certificate revocation lists (CRL), which allows remote attackers to bypass intended access restrictions by using revoked certificates.
Alerts:
Gentoo 200808-08 stunnel 2008-08-08
Mandriva MDVSA-2008:168 stunnel 2007-08-13
Fedora FEDORA-2008-4531 stunnel 2008-05-28
Fedora FEDORA-2008-4579 stunnel 2008-05-28
Fedora FEDORA-2008-4606 stunnel 2008-05-28
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds