air.mozilla.org does not support RFC 5746, potentially vulnerable to CVE-2009-3555

RESOLVED DUPLICATE of bug 657920

Status

RESOLVED DUPLICATE of bug 657920
8 years ago
4 years ago

People

(Reporter: dveditz, Unassigned)

Tracking

Details

(URL)

(Reporter)

Description

8 years ago
https://air.mozilla.org/ gives warnings in the error console that it does not support RFC 5746 and is potentially vulnerable to CVE-2009-3555. It does not show the safe SSL indicators if the user has set security.ssl.treat_unsafe_renegotiation_as_broken to true
Status: NEW → RESOLVED
Last Resolved: 8 years ago
Resolution: --- → DUPLICATE
Duplicate of bug: 657920
Product: mozilla.org → mozilla.org Graveyard
You need to log in before you can comment on or make changes to this bug.