CVE-2013-4111

NameCVE-2013-4111
DescriptionThe Python client library for Glance (python-glanceclient) before 0.10.0 does not properly check the preverify_ok value, which prevents the server hostname from being verified with a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate and allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
Debian Bugs718282

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
python-glanceclient (PTS)bullseye1:3.2.2-2fixed
bookworm1:4.1.0-2fixed
sid, trixie1:4.7.0-4fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
python-glanceclientsource(unstable)1:0.9.0-2718282

Search for package or bug name: Reporting problems