CVE-2013-0308
CVE-2013-0308 affects the git tool’s imap-send command: prior to version 1.8.1.4, it does not verify that the SSL server hostname matches the certificate’s CN/subjectAltName, enabling MITM spoofing with any valid cert. Affected releases include git versions before 1.8.1.4; multiple advisories (e....