CVE-2009-0161
CVE-2009-0161 affects Apple Mac OS X 10.5 before 10.5.7, specifically the Ruby OpenSSL OCSP module. The issue stems from incomplete error checking in OpenSSL’s OCSP handling, which may cause an invalid OCSP response to be treated as valid, potentially allowing certificate spoofing via a revoked c...