1
Candidate: CVE-2011-0082
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0082
6
The X.509 certificate validation functionality in Mozilla Firefox 4.0.x
7
through 4.0.1 does not properly implement single-session security
8
exceptions, which might make it easier for user-assisted remote attackers
9
to spoof an SSL server via an untrusted certificate that triggers
10
potentially unwanted local caching of documents from that server.
14
https://bugzilla.redhat.com/show_bug.cgi?id=709165
15
https://bugzilla.mozilla.org/show_bug.cgi?id=660749
16
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=627552
22
upstream_firefox: needs-triage
23
hardy_firefox: ignored (uses system xulrunner)
24
lucid_firefox: not-affected
25
maverick_firefox: not-affected
26
natty_firefox: released (4.0.1+build1+nobinonly-0ubuntu0.11.04.1)
27
oneiric_firefox: not-affected
28
devel_firefox: not-affected