Bug#458968: CVE-2007-6591: Accepts SSL certificates for sites in subjectAltName, even though these are not displayed

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#458968: CVE-2007-6591: Accepts SSL certificates for sites in subjectAltName, even though these are not displayed
From: Stefan Fritsch <sf@sfritsch.de>
Date: Thu, 03 Jan 2008 22:57:57 +0100
Message-id: <[🔎] 20080103215757.22651.46279.reportbug@k.lan>
Reply-to: Stefan Fritsch <sf@sfritsch.de>, 458968@bugs.debian.org

Package: konqueror
Version: 4:3.5.8.dfsg.1-2
Severity: important
Tags: security

>From CVE-2007-6591:
"KDE Konqueror 3.5.5 and 3.95.00, when a user accepts an SSL server certificate
on the basis of the CN domain name in the DN field, regards the certificate as
also accepted for all domain names in subjectAltName:dNSName fields, even though
these fields cannot be examined in the product, which makes it easier for remote
attackers to trick a user into accepting an invalid certificate for a spoofed
web site."

There is more info at

http://nils.toedtmann.net/pub/subjectAltName.txt

and 

http://www.securityfocus.com/archive/1/483942/100/100/threaded

Reply to:

Prev by Date: Processed: found 458968 in 4:3.5.8.dfsg.1-2, found 458968 in 4:3.5.5a.dfsg.1-6etch1 ...
Next by Date: Processing of kdenetwork_3.98.0~svn755919-1_i386.changes
Previous by thread: Processed: found 458968 in 4:3.5.8.dfsg.1-2, found 458968 in 4:3.5.5a.dfsg.1-6etch1 ...
Next by thread: Processing of kdenetwork_3.98.0~svn755919-1_i386.changes
Index(es):
- Date
- Thread