3 matches found
UBUNTU-CVE-2021-39360
In GNOME libzapojit through 0.0.3, zpj-skydrive.c does not enable TLS certificate verification on the SoupSessionSync objects it creates, leaving users vulnerable to network MITM attacks. NOTE: this is similar to CVE-2016-20011...
CVE-2021-39360
CVE-2021-39360 affects GNOME libzapojit up to 0.0.3. The vulnerable component is zpj-skydrive.c, which does not enable TLS certificate verification on SoupSessionSync objects, exposing users to network MITM attacks. This mirrors CVE-2016-20011 behavior. The issue is documented in Nessus entries a...
GNOME libzapojit 信任管理问题漏洞
libzapojit is a GLib/GObject wrapper for the SkyDrive and Hotmail REST APIs. A security vulnerability exists in GNOME libzapojit, which stems from the fact that in version 0.0.3 of GNOME libzapojit, zpj-skydrive.c does not enable TLS certificate validation on the SoupSessionSync object it creates...