Portage 'urlopen()' SSL Certificate Validation Security Bypass Vulnerability

Bugtraq ID: 59878
Class: Design Error
CVE: CVE-2013-2100
Remote: Yes
Local: No
Published: May 15 2013 12:00AM
Updated: May 16 2013 05:53AM
Credit: Jason A. Donenfeld
Vulnerable: Gentoo sys-apps/portage 2.1.4.5
Gentoo sys-apps/portage 2.1.4.4
Gentoo sys-apps/portage 2.1.3.11
Gentoo sys-apps/portage 2.1.3.10
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus