Closed
Bug 666110
Opened 13 years ago
Closed 13 years ago
services.addons.mozilla.org does not support RFC 5746, potentially vulnerable to CVE-2009-3555
Categories
(mozilla.org Graveyard :: Server Operations, task)
mozilla.org Graveyard
Server Operations
Tracking
(Not tracked)
RESOLVED
DUPLICATE
of bug 657920
People
(Reporter: dveditz, Unassigned)
References
()
Details
https://services.addons.mozilla.org/ gives warnings in the error console that it does not support RFC 5746 and is potentially vulnerable to CVE-2009-3555. It does not show the safe SSL indicators if the user has set security.ssl.treat_unsafe_renegotiation_as_broken to true
Reporter | ||
Comment 1•13 years ago
|
||
versioncheck.AMO and AMO itself seem to be OK, though.
Updated•13 years ago
|
Status: NEW → RESOLVED
Closed: 13 years ago
Resolution: --- → DUPLICATE
Firefox 6b2 "versioncheck.addons.mozilla.org : server does not support RFC 5746, see CVE-2009-3555"
Updated•9 years ago
|
Product: mozilla.org → mozilla.org Graveyard
You need to log in
before you can comment on or make changes to this bug.
Description
•