6 matches found
tomcat: Client certificate verification bypass due to virtual host mapping
A certificate validation flaw has been found in Apache Tomcat. omcat did not validate that the host name provided via the SNI extension was the same as the host name provided in the HTTP host header field. If Tomcat was configured with more than one virtual host and the TLS configuration for one ...
EUVD-2020-12713
Malware in sbrugna...
CVE-2020-1887
Incorrect validation of the TLS SNI hostname in osquery versions after 2.9.0 and before 4.2.0 could allow an attacker to MITM osquery traffic in the absence of a configured root chain of trust...
SUSE-SU-2021:2771-1 Security update for fetchmail
This update for fetchmail fixes the following issues: - CVE-2021-36386: DoS or information disclosure in some configurations bsc1188875 - Change PASSWORDLEN from 64 to 256 bsc1188034 - Set the hostname for SNI when using TLS bsc1182807 - Allow --syslog option in daemon mode. bsc1033081 - Set the...
Facebook osquery trust management issue vulnerability
Facebook osquery is a SQL-based, open-source operating system detection and monitoring framework from Facebook Inc. in the United States. A trust management issue vulnerability exists in Facebook osquery versions 2.9.0 through 4.2.0 excluding versions 2.9.0 and 4.2.0, which stems from the program...
gnutls security, bug fix, and enhancement update
3.3.29-8.0.1 - Include ECDSA KAT into selftests for FIPS140-2 compliance Orabug 27484156 3.3.29-8 - Backported --sni-hostname option which allows overriding the hostname advertised to the peer 1444792 - Improved counter-measures in TLS CBC record padding for lucky13 attack CVE-2018-10844, 1589704...