Podatność CVE-2009-4123


Publikacja: 2023-12-12   Modyfikacja: 2023-12-14

Opis:
The jruby-openssl gem before 0.6 for JRuby mishandles SSL certificate validation.

Typ:

CWE-295

(Certificate Issues)

Affected software
Jruby -> Jruby-openssl 

 Referencje:
https://github.com/advisories/GHSA-xgv7-pqqh-h2w9
https://github.com/rubysec/ruby-advisory-db/blob/master/gems/jruby-openssl/CVE-2009-4123.yml
http://jruby.org/2009/12/07/vulnerability-in-jruby-openssl
https://web.archive.org/web/20101213091125/http://jruby.org/2009/12/07/vulnerability-in-jruby-openssl

Copyright 2024, cxsecurity.com

 

Back to Top