CVE-2021-36377 log

Source
Severity High
Remote Yes
Type Certificate verification bypass
Description
Fossil before version 2.15.2 often skips the hostname check during TLS certificate validation.
Group Package Affected Fixed Severity Status Ticket
AVG-2146 fossil 2.15.1-1 High Vulnerable
References
https://www.fossil-scm.org/forum/forumpost/8d367e16f53d93c789d70bd3bf2c9587227bbd5c6a7b8e512cccd79007536036
https://www.fossil-scm.org/home/info/aaab2a15d1dfc22f5453c2bad8f25ecf518ed3eef9a7fa6f4c5bd69ab4e4b075