3 matches found
EUVD-2021-25719
Malware in sbrugna...
CVE-2021-39358
In GNOME libgfbgraph through 0.2.4, gfbgraph-photo.c does not enable TLS certificate verification on the SoupSessionSync objects it creates, leaving users vulnerable to network MITM attacks. NOTE: this is similar to CVE-2016-20011...
CVE-2021-39358
In GNOME libgfbgraph up to version 0.2.4, gfbgraph-photo.c creates SoupSessionSync objects without enabling TLS certificate verification, exposing users to network MITM attacks. This is the vulnerability described as CVE-2021-39358. The issue is tied to not verifying TLS certificates in the sessi...