telepathy-idle vulnerability

ID USN-1821-1
Type ubuntu
Reporter Ubuntu
Modified 2013-05-09T00:00:00


It was discovered that telepathy-idle did not perform any server
certificate validation when using SSL connections. If a remote attacker
were able to perform a man-in-the-middle attack, this flaw could be
exploited to alter or compromise confidential information.