|
IO::Socket::SSL is a module for Perl that provides SSL
support. The module is exposed to a security bypass
issue. Specifically, if "verify_mode" is set to anything
but "VERIFY_NONE" and no valid "ca_path" or "ca_file" is
provided, IO::Socket::SSL silently falls back to
"VERIFY_NONE" verification mode. IO::Socket::SSL
versions prior to 1.35 are affected.
Ref:
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=606058
10.50.32 - CVE: Not Available
Platform: Cross Platform |
