CVE-2012-6709

Опубликовано: 23 фев. 2018

Источник: debian

EPSS Низкий

Описание

ELinks 0.12 and Twibright Links 2.3 have Missing SSL Certificate Validation.

Пакет	Статус	Версия исправления	Релиз	Тип
elinks	fixed	0.13~20190125-1	experimental	package
elinks	fixed	0.13~20190125-3		package
elinks	ignored		stretch	package
elinks	ignored		jessie	package
elinks	ignored		wheezy	package
links2	fixed	2.6-1		package

Patch proposed upstream (when using): http://lists.linuxfromscratch.org/pipermail/elinks-dev/2015-June/002099.html
tested links2 against badssl.com, no apparent issue back in wheezy
src:links2/2.6-1 adds verify-ssl-certs-510417.diff to verify SSL certs.
src:links2 upstream in 2.11 adds support for verifying SSL certificates.

EPSS

Процентиль: 41%

0.00191

Низкий

CVE-2012-6709

CVSS3: 5.9

ubuntu

почти 8 лет назад

ELinks 0.12 and Twibright Links 2.3 have Missing SSL Certificate Validation.

CVE-2012-6709

redhat

около 13 лет назад

ELinks 0.12 and Twibright Links 2.3 have Missing SSL Certificate Validation.

CVE-2012-6709

CVSS3: 5.9

nvd

почти 8 лет назад

ELinks 0.12 and Twibright Links 2.3 have Missing SSL Certificate Validation.

GHSA-8758-mxx4-h8h8

CVSS3: 5.9

github

больше 3 лет назад

ELinks 0.12 and Twibright Links 2.3 have Missing SSL Certificate Validation.

EPSS

Процентиль: 41%

0.00191

Низкий