fossil
| Link | package | bugs open | bugs closed | Wiki | GitHub | web search |
| Description | Simple, high-reliability, distributed software configuration management |
| Version | 2.23-1 [extra] |
Resolved
| Group | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|
| AVG-2146 | 2.15.1-1 | 2.16-1 | High | Fixed |
| Issue | Group | Severity | Remote | Type | Description |
|---|---|---|---|---|---|
| CVE-2021-36377 | AVG-2146 | High | Yes | Certificate verification bypass | Fossil before version 2.15.2 often skips the hostname check during TLS certificate validation. |
Advisories
| Date | Advisory | Group | Severity | Type |
|---|---|---|---|---|
| 10 Aug 2021 | ASA-202108-8 | AVG-2146 | High | certificate verification bypass |