Potential MitM Flaw in Unity Shopping Lens

Bug #1073085 reported by Benjamin Kerensa on 2012-10-30
260
This bug affects 1 person
Affects Status Importance Assigned to Milestone
unity-lens-shopping
Undecided
Unassigned

Bug Description

Currently Unity Shopping Lens uses Libsoup which does not do Ceritificate Validation so their appears to be a potential for a MitM attack if DNS Poisoning on the LAN occurs and packets are intercepted and a fake certificate is sent along with bad results.

Marc Deslauriers (mdeslaur) wrote :

I can't reproduce this.

I see the following code in scope.vala which enables cert checking:
      session.ssl_use_system_ca_file = true;
      session.ssl_strict = true;

And attempting to MITM using sslsniff and an invalid cert shows no results in the dash.

Please give detailed steps on how to reproduce this issue.

Changed in unity-lens-shopping:
status: New → Incomplete
information type: Private Security → Public Security
Launchpad Janitor (janitor) wrote :

[Expired for unity-lens-shopping because there has been no activity for 60 days.]

Changed in unity-lens-shopping:
status: Incomplete → Expired
To post a comment you must log in.
This report contains Public Security information  Edit
Everyone can see this security related information.

Other bug subscribers