[Bug 987158] New: Konqueror results positive to POODLE vulnerability in Leap 42.1
http://bugzilla.opensuse.org/show_bug.cgi?id=987158 Bug ID: 987158 Summary: Konqueror results positive to POODLE vulnerability in Leap 42.1 Classification: openSUSE Product: openSUSE Distribution Version: Leap 42.1 Hardware: x86-64 OS: openSUSE 42.1 Status: NEW Severity: Critical Priority: P5 - None Component: Security Assignee: security-team@suse.de Reporter: stakanov@freenet.de QA Contact: qa-bugs@suse.de Found By: --- Blocker: --- Go to https://www.ssllabs.com/ssltest/viewMyClient.html Run he testcase for Konqueror. It results positive to the POODLE vulnerability (SSL3). I do not think that this is acceptable for a browser that, even if used little by users to go on the net is by default vulnerable. Second and for me more important: is this system wide? If it is, it may also cause a problem to startTLS in Kmail I guess, since AFAIK Kmail follows the overall system wide settings. Still, a browser delivered in a OS today should not present any more the POODLE problematic. -- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.opensuse.org/show_bug.cgi?id=987158
http://bugzilla.opensuse.org/show_bug.cgi?id=987158#c1
Andreas Stieger
http://bugzilla.opensuse.org/show_bug.cgi?id=987158
http://bugzilla.opensuse.org/show_bug.cgi?id=987158#c2
Stakanov Schufter
http://bugzilla.opensuse.org/show_bug.cgi?id=987158
Stakanov Schufter
http://bugzilla.opensuse.org/show_bug.cgi?id=987158
Stakanov Schufter
http://bugzilla.opensuse.org/show_bug.cgi?id=987158
http://bugzilla.opensuse.org/show_bug.cgi?id=987158#c3
Luca Beltrame
http://bugzilla.opensuse.org/show_bug.cgi?id=987158
http://bugzilla.opensuse.org/show_bug.cgi?id=987158#c4
Karl Cheng
From what I can tell this issue seems to have been resolved.
Attempting to load an SSLv3 site[1] via Konqueror does not load the page, but instead appears to have no response. Attempting to use the testing site[2] results in checks for SSLv2 and SSLv3 hanging while TLS tests succeeded, suggesting that they are disabled. This was the same for both KHTML and WebKit engines if it makes any difference. [1]: https://www.ssllabs.com:10300/1x1-transparent.png?t=1 [2]: https://www.ssllabs.com/ssltest/viewMyClient.html -- You are receiving this mail because: You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@novell.com