AVG-2307 log
| Package | gfbgraph |
| Status | Fixed |
| Severity | High |
| Type | man-in-the-middle |
| Affected | 0.2.4-1 |
| Fixed | 0.2.5-1 |
| Current | Removed |
| Ticket | None |
| Created | Mon Aug 23 10:59:06 2021 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2021-39358 | High | Yes | Man-in-the-middle | In GNOME libgfbgraph before version 0.2.5, gfbgraph-photo.c does not enable TLS certificate verification on the SoupSessionSync objects it creates, leaving... |