FEDORA-2020-fcd5fd47bd created by fnux 7 months ago for Fedora 31
stable

Addresses CVE-2020-11054: After a certificate error was overridden by the user, qutebrowser displays the URL as yellow (colors.statusbar.url.warn.fg). However, when the affected website was subsequently loaded again, the URL was mistakenly displayed as green (colors.statusbar.url.success_https). While the user already has seen a certificate error prompt at this point (or set content.ssl_strict to false which is not recommended), this could still provide a false sense of security. This is now fixed.

How to install

sudo dnf upgrade --advisory=FEDORA-2020-fcd5fd47bd

This update has been submitted for testing by fnux.

7 months ago

This update's test gating status has been changed to 'waiting'.

7 months ago

This update's test gating status has been changed to 'ignored'.

7 months ago

This update has been pushed to testing.

7 months ago

This update's test gating status has been changed to 'failed'.

7 months ago

This update's test gating status has been changed to 'greenwave_failed'.

6 months ago

This update can be pushed to stable now if the maintainer wishes

6 months ago

This update has been submitted for stable by bodhi.

6 months ago

This update's test gating status has been changed to 'failed'.

6 months ago

FEDORA-2020-fcd5fd47bd ejected from the push because 'Required tests did not pass on this update'

6 months ago

This update's test gating status has been changed to 'greenwave_failed'.

6 months ago

This update's test gating status has been changed to 'failed'.

6 months ago
User Icon airwave provided feedback 6 months ago
karma
BZ#1825405 qutebrowser-1.11.1 is available
BZ#1835335 CVE-2020-11054 qutebrowser: Improper handling of certificates while visiting pages [fedora-all]

This update's test gating status has been changed to 'greenwave_failed'.

6 months ago

This update's test gating status has been changed to 'failed'.

6 months ago

This update's test gating status has been changed to 'greenwave_failed'.

6 months ago

This update's test gating status has been changed to 'failed'.

6 months ago

This update's test gating status has been changed to 'greenwave_failed'.

6 months ago

This update's test gating status has been changed to 'failed'.

6 months ago

This update's test gating status has been changed to 'greenwave_failed'.

6 months ago

This update's test gating status has been changed to 'failed'.

6 months ago

This update's test gating status has been changed to 'greenwave_failed'.

4 months ago

This update's test gating status has been changed to 'failed'.

4 months ago

This update's test gating status has been changed to 'greenwave_failed'.

4 months ago

This update's test gating status has been changed to 'failed'.

4 months ago

This update's test gating status has been changed to 'greenwave_failed'.

4 months ago

This update's test gating status has been changed to 'failed'.

4 months ago

This update's test gating status has been changed to 'waiting'.

4 months ago

This update's test gating status has been changed to 'failed'.

4 months ago
User Icon bd6627 commented & provided feedback 4 months ago
karma

Revisited site with certificate error still displays in yellow when you revisit.

BZ#1825405 qutebrowser-1.11.1 is available
BZ#1835335 CVE-2020-11054 qutebrowser: Improper handling of certificates while visiting pages [fedora-all]

This update's test gating status has been changed to 'waiting'.

4 months ago

This update's test gating status has been changed to 'failed'.

4 months ago

This update's test gating status has been changed to 'waiting'.

4 months ago

This update's test gating status has been changed to 'failed'.

4 months ago

This update's test gating status has been changed to 'waiting'.

4 months ago

This update's test gating status has been changed to 'failed'.

4 months ago

This update's test gating status has been changed to 'waiting'.

3 months ago

This update's test gating status has been changed to 'failed'.

3 months ago

This update's test gating status has been changed to 'waiting'.

3 months ago

This update's test gating status has been changed to 'failed'.

3 months ago

This update's test gating status has been changed to 'waiting'.

3 months ago

This update's test gating status has been changed to 'failed'.

3 months ago

This update's test gating status has been changed to 'waiting'.

3 months ago

This update's test gating status has been changed to 'failed'.

3 months ago

This update's test gating status has been changed to 'waiting'.

3 months ago

This update's test gating status has been changed to 'passed'.

3 months ago

This update has been submitted for stable by fnux.

3 months ago

This update has been pushed to stable.

3 months ago

Please login to add feedback.

Metadata
Type
security
Severity
low
Karma
2
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
7 days
Dates
submitted
7 months ago
in testing
7 months ago
in stable
3 months ago
BZ#1825405 qutebrowser-1.11.1 is available
0
2
BZ#1835335 CVE-2020-11054 qutebrowser: Improper handling of certificates while visiting pages [fedora-all]
0
2

Automated Test Results