Pidgin Security Advisory

TitleX.509 Certificates Improperly Imported
Date2016-06-21
CVE NameCVE-2016-1000030
Discovered ByYuan Kang and Suman Jana from Columbia University and Baishakhi Ray from the University of Virginia
DescriptionX.509 certificates may be improperly imported when using GnuTLS.
Fixed in Revisiond6fc1ce76ffe
Fixed in Version2.11.0
FixCheck return values from gnutls_x509_crt_init() and gnutls_x509_crt_import().

Return to Security Advisory Index