9 matches found
Linux Distros Unpatched Vulnerability : CVE-2021-39359
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In GNOME libgda through 6.0.0, gda-web-provider.c does not enable TLS certificate verification on the SoupSessionSync objects it creates, leaving users vulnerab...
SUSE-SU-2022:3016-1 Security update for libgda
This update for libgda fixes the following issues: - CVE-2021-39359: Enabled TLS certificate verification bsc1189849...
SUSE: Security Advisory (SUSE-SU-2022:3016-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Mageia: Security Advisory (MGASA-2022-0005)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
MGASA-2022-0005 Updated libgda5.0 packages fix security vulnerability
Fix missing TLS certificate verification. CVE-2021-39359...
Fedora: Security Advisory for libgda (FEDORA-2021-084f819da6)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Fedora: Security Advisory for libgda (FEDORA-2021-06510d73f1)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2021-39359
CVE-2021-39359 affects GNOME libgda up to 6.0.0, where gda-web-provider.c creates SoupSessionSync objects without TLS certificate verification, leaving users exposed to network MITM attacks. This aligns with the general pattern of CVE-2016-20011. The connected Nessus/NASL entries corroborate the ...
CVE-2021-39359
In GNOME libgda through 6.0.0, gda-web-provider.c does not enable TLS certificate verification on the SoupSessionSync objects it creates, leaving users vulnerable to network MITM attacks. NOTE: this is similar to CVE-2016-20011...