CVE

Id
79607  
CVE No.
CVE-2015-2330  
Status
Candidate  
Description
Late TLS certificate verification in WebKitGTK+ prior to 2.6.6 allows remote attackers to view a secure HTTP request, including, for example, secure cookies.  
Phase
Assigned (20150318)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
722642 79607 CVE-2015-2330 MLIST:[oss-security] 20150317 CVE Request: WebKitGTK+ late TLS certificate verification  View
722643 79607 CVE-2015-2330 URL:http://www.openwall.com/lists/oss-security/2015/03/17/11  View
722644 79607 CVE-2015-2330 MLIST:[oss-security] 20150318 Re: CVE Request: WebKitGTK+ late TLS certificate verification  View
722645 79607 CVE-2015-2330 URL:http://www.openwall.com/lists/oss-security/2015/03/18/4  View
722646 79607 CVE-2015-2330 CONFIRM:https://bugs.webkit.org/show_bug.cgi?id=142244  View
722647 79607 CVE-2015-2330 CONFIRM:https://trac.webkit.org/changeset/181074  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
8267 JVNDB-2015-003587 複数の Microsoft Windows 製品のカーネルモードドライバの win32k.sys における重要な情報を取得される脆弱性 複数の Microsoft Windows 製品のカーネルモードドライバの win32k.sys には、カーネルメモリから重要な情報を取得される脆弱性が存在します。 CVE-2015-2382 79607 2.1 http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-003587.html  View