Updated libgrss packages fix security vulnerability
Publication date: 12 Jul 2021Modification date: 12 Jul 2021
Type: security
Affected Mageia releases : 7 , 8
CVE: CVE-2016-20011
Description
libgrss does not perform any TLS certificate verification because it uses the
deprecated SoupSessionAsync, which requires manually enabling certificate
verification, rather than a modern SoupSession that has good defaults
(CVE-2016-20011).
References
SRPMS
7/core
- libgrss-0.7.0-2.1.mga7
8/core
- libgrss-0.7.0-4.1.mga8