AVG-2307 log

Package gfbgraph
Status Fixed
Severity High
Type man-in-the-middle
Affected 0.2.4-1
Fixed 0.2.5-1
Current Removed
Ticket None
Created Mon Aug 23 10:59:06 2021
Issue Severity Remote Type Description
CVE-2021-39358 High Yes Man-in-the-middle
In GNOME libgfbgraph before version 0.2.5, gfbgraph-photo.c does not enable TLS certificate verification on the SoupSessionSync objects it creates, leaving...