Advisories ยป MGASA-2013-0229

Updated ruby packages fix CVE-2013-4073

Publication date: 26 Jul 2013
Type: security
Affected Mageia releases : 2 , 3
CVE: CVE-2013-4073

Description

A vulnerability in Ruby's SSL client that could allow man-in-the-middle
attackers to spoof SSL servers via valid certificate issued by a trusted
certification authority (CVE-2013-4073).
                

References

SRPMS

2/core

3/core