FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-03-28 15:43:32 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
a14dee30-e3d7-11e1-a084-50e5492bd3dclibcloud -- possible SSL MITM due to invalid regexp used to validate target server hostname

The libcloud development team reports:

When establishing a secure (SSL / TLS) connection to a target server an invalid regular expression has been used for performing the hostname verification. Subset instead of the full target server hostname has been marked an an acceptable match for the given hostname. For example, certificate with a hostname field of "aexample.com" was considered a valid certificate for domain "example.com".


Discovery 2012-08-01
Entry 2012-08-11
py-libcloud
< 0.11.1

CVE-2012-3446
http://seclists.org/fulldisclosure/2012/Aug/55