Oval Definition:oval:org.opensuse.security:def:20136628
Revision Date:2022-06-30Version:1
Title:CVE-2013-6628
Description:

net/socket/ssl_client_socket_nss.cc in the TLS implementation in Google Chrome before 31.0.1650.48 does not ensure that a server's X.509 certificate is the same during renegotiation as it was before renegotiation, which might allow remote web servers to interfere with trust relationships by renegotiating a session.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2013-6628
Mitre CVE-2013-6628
SUSE CVE-2013-6628
openSUSE-SU-2013:1776-1
openSUSE-SU-2013:1777-1
openSUSE-SU-2013:1861-1
openSUSE-SU-2014:0065-1
Platform(s):openSUSE 12.2 Update
openSUSE 12.3 Update
openSUSE 13.1
openSUSE Leap 15.0
openSUSE Tumbleweed
Product(s):
Definition Synopsis
  • openSUSE 13.1 is installed
  • AND Package Information
  • chromedriver-31.0.1650.63-13.7 is installed
  • OR chromium-31.0.1650.63-13.7 is installed
  • OR chromium-desktop-gnome-31.0.1650.63-13.7 is installed
  • OR chromium-desktop-kde-31.0.1650.63-13.7 is installed
  • OR chromium-ffmpegsumo-31.0.1650.63-13.7 is installed
  • OR chromium-suid-helper-31.0.1650.63-13.7 is installed
    • Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • chromium-66.0.3359.170-lp150.1 is installed
  • AND chromium is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND Package Information
  • chromedriver-55.0.2883.75-3.1 is installed
  • OR chromium-55.0.2883.75-3.1 is installed
    • BACK