aqbanking wizard in GNUCash doesn't support SNI
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
libgwenhywfar (Ubuntu) |
Fix Released
|
Medium
|
Unassigned |
Bug Description
1. Start new GNUCash
2. Online banking wizard
3. OFX backend
4. Select bank: USAA (FID 24591)
Auto-populates API url of https:/
"Request account list" and enter a bogus pin.
What happens:
The user gets a SSL error about a mismatch between the certificate expected and the presented certificate's hostname of www.usaa.com.
Since visiting the API url in a browser works correctly, and I see that services2.
ProblemType: Bug
DistroRelease: Ubuntu 18.04
Package: aqbanking-tools (not installed)
ProcVersionSign
Uname: Linux 4.15.0-39-generic x86_64
NonfreeKernelMo
ApportVersion: 2.20.9-0ubuntu7.5
Architecture: amd64
CurrentDesktop: GNOME
Date: Fri Dec 7 04:45:23 2018
SourcePackage: libaqbanking
UpgradeStatus: Upgraded to bionic on 2018-05-21 (200 days ago)
Changed in libgwenhywfar (Ubuntu): | |
status: | New → Confirmed |
information type: | Public Security → Public |
Thanks for taking the time to report this bug and helping to make Ubuntu better. Since the package referred to in this bug is in universe or multiverse, it is community maintained. If you are able, I suggest coordinating with upstream and posting a debdiff for this issue. When a debdiff is available, members of the security team will review it and publish the package. See the following link for more information: https:/ /wiki.ubuntu. com/SecurityTea m/UpdateProcedu res