Article Source Ubuntu Security Notices
September 17, 2009, 5:52 pm
September 17, 2009, 5:52 pm
It was discovered that KDE did not properly handle certificates with NULL characters in the Subject Alternative Name field of X.509 certificates. An attacker could exploit this to perform a man in the middle attack to view sensitive information or alter encrypted communications…