Ubuntu
xchat-gnome package

Overview
Code
Bugs
Blueprints
Translations
Answers

Bug #1565000
Comment #7

Comment 7 for bug 1565000

Revision history for this message

Launchpad Janitor (janitor) wrote on 2016-04-04: Re: xchat-gnome doesn't validate ssl hostnames

This bug was fixed in the package hexchat - 2.9.6.1-2ubuntu0.1

---------------
hexchat (2.9.6.1-2ubuntu0.1) trusty-security; urgency=medium

  * SECURITY UPDATE: no ssl hostname verification (LP: #1565000)
    - debian/patches/validate_ssl_hostnames.patch: properly validate
      hostnames in src/common/server.c, src/common/ssl.c, src/common/ssl.h.
    - CVE number pending
  * SECURITY UPDATE: missing ssl certificate handled incorrectly
    - debian/patches/handle_missing_ssl_cert.patch: fail connection if
      certificate isn't found in src/common/server.c.
    - No CVE number

-- Marc Deslauriers <email address hidden> Fri, 01 Apr 2016 19:53:41 -0400

Ubuntuxchat-gnome package

Comment 7 for bug 1565000

Ubuntu
xchat-gnome package