fossil

Link package | bugs open | bugs closed | Wiki | GitHub | web search
Description Simple, high-reliability, distributed software configuration management
Version 2.15.1-1 [community]

Open

Group Affected Fixed Severity Status Ticket
AVG-2146 2.15.1-1 High Vulnerable
Issue Group Severity Remote Type Description
CVE-2021-36377 AVG-2146 High Yes Certificate verification bypass
Fossil before version 2.15.2 often skips the hostname check during TLS certificate validation.