2 matches found
Debian DSA-2573-1 : radsecproxy - SSL certificate verification weakness
Ralf Paffrath reported that Radsecproxy, a RADIUS protocol proxy, mixed up pre- and post-handshake verification of clients. This vulnerability may wrongly accept clients without checking their certificate chain under certain configurations. Raphael Geissert spotted that the fix for CVE-2012-4523...
DSA-2573-1 radsecproxy - SSL certificate verification weakness
Bulletin has no description...