AVG-2311 log
| Package | grilo |
| Status | Fixed |
| Severity | High |
| Type | man-in-the-middle |
| Affected | 0.3.13-1 |
| Fixed | 0.3.14-1 |
| Current | 0.3.16-1 [extra] |
| Ticket | None |
| Created | Mon Aug 23 11:00:46 2021 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2021-39365 | High | Yes | Man-in-the-middle | In GNOME grilo though 0.3.13, grl-net-wc.c does not enable TLS certificate verification on the SoupSessionAsync objects it creates, leaving users vulnerable... |