Back to bug 2153260
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Sandipan Roy | 2022-12-14 11:15:07 UTC | CC | aboyko, aileenc, alazarot, anstephe, avibelli, balejosg, bgeorges, boliveir, clement.escoffier, dandread, eglynn, emingora, eric.wittmann, fmongiar, gjospin, gmalinko, gsmet, hamadhan, ibek, janstey, jjoyce, jnethert, jpavlik, jpechane, jpoth, jrokos, jstastny, kverlaen, lhh, lpeer, lthon, max.andersen, mburns, mgarciac, mkolesni, mnovotny, pantinor, pdelbell, pdrozd, peholase, pgallagh, probinso, pskopek, rguimara, rrajasek, rruss, rsvoboda, sbiarozk, scohen, sdouglas, spower, sthorger, tcunning, yfang | |
| Sandipan Roy | 2022-12-14 11:16:28 UTC | CC | eglynn, jjoyce, lhh, lpeer, mburns, mgarciac, mkolesni, scohen, spower | |
| Sandipan Roy | 2022-12-14 11:16:48 UTC | Blocks | 2153261 | |
| Red Hat Bugzilla | 2022-12-31 23:43:19 UTC | CC | aboyko | |
| Sandipan Roy | 2023-02-23 06:17:02 UTC | Doc Text | The undertow client is not checking the server identity presented by the server certificate in https connections. This is a compulsory step (at least it should be performed by default) in https and in http/2. I would add it to any TLS client protocol. | |
| RaTasha Tillery-Smith | 2023-02-23 12:37:56 UTC | Doc Text | The undertow client is not checking the server identity presented by the server certificate in https connections. This is a compulsory step (at least it should be performed by default) in https and in http/2. I would add it to any TLS client protocol. | A flaw was found in undertow. The undertow client is not checking the server identity the server certificate presents in HTTPS connections. This is a compulsory step ( that should at least be performed by default) in HTTPS and in http/2. |
| errata-xmlrpc | 2023-03-29 11:41:06 UTC | Link ID | Red Hat Product Errata RHSA-2023:1514 | |
| errata-xmlrpc | 2023-03-29 11:42:32 UTC | Link ID | Red Hat Product Errata RHSA-2023:1513 | |
| errata-xmlrpc | 2023-03-29 11:44:13 UTC | Link ID | Red Hat Product Errata RHSA-2023:1512 | |
| errata-xmlrpc | 2023-03-29 11:46:00 UTC | Link ID | Red Hat Product Errata RHSA-2023:1516 | |
| Product Security DevOps Team | 2023-03-29 15:47:31 UTC | Status | NEW | CLOSED |
| Resolution | --- | ERRATA | ||
| Last Closed | 2023-03-29 15:47:31 UTC | |||
| errata-xmlrpc | 2023-05-03 14:06:38 UTC | Link ID | Red Hat Product Errata RHSA-2023:2100 | |
| errata-xmlrpc | 2023-05-10 11:22:34 UTC | Link ID | Red Hat Product Errata RHSA-2023:2706 | |
| errata-xmlrpc | 2023-05-10 11:23:09 UTC | Link ID | Red Hat Product Errata RHSA-2023:2707 | |
| errata-xmlrpc | 2023-05-10 11:23:35 UTC | Link ID | Red Hat Product Errata RHSA-2023:2705 | |
| errata-xmlrpc | 2023-05-10 11:59:40 UTC | Link ID | Red Hat Product Errata RHSA-2023:2713 | |
| errata-xmlrpc | 2023-05-10 14:32:56 UTC | Link ID | Red Hat Product Errata RHSA-2023:2710 | |
| Mark Brophy | 2023-06-08 10:21:57 UTC | CC | mbrophy | |
| errata-xmlrpc | 2023-06-27 11:35:08 UTC | Link ID | Red Hat Product Errata RHSA-2023:3813 | |
| errata-xmlrpc | 2023-06-29 20:07:50 UTC | Link ID | Red Hat Product Errata RHSA-2023:3954 | |
| Stoyan Nikolov | 2023-08-01 14:34:48 UTC | CC | snikolov | |
| errata-xmlrpc | 2023-08-14 01:02:29 UTC | Link ID | Red Hat Product Errata RHSA-2023:4627 |
Back to bug 2153260