Control: retitle -1 LWP::UserAgent: strange behavior of CA cert paths with
liblwp-protocol-https-perl 6.04-2 (CVE-2014-3230)
Control: reassign -1 liblwp-protocol-https-perl
Control: forcemerge 746579 735422
On 2014-05-06 16:17:06 +0200, Vincent Lefevre wrote:
On 2014-05-06 15:34:11 +0200, Jakub
* Vincent Lefevre vinc...@vinc17.net, 2014-01-15, 10:51:
In short, if PERL_LWP_SSL_CA_PATH is set to some existing directory but
the certificate isn't found there:
* if HTTPS_CA_DIR isn't set, there's a failure, but
* if HTTPS_CA_DIR is set to something regarded as invalid (see the
does not
On 2014-05-06 15:34:11 +0200, Jakub Wilk wrote:
If think what you observed here is bug #746579.
Yes, very probably. :(
I suppose that the bugs should be merged.
--
Vincent Lefèvre vinc...@vinc17.net - Web: https://www.vinc17.net/
100% accessible validated (X)HTML - Blog:
Package: libwww-perl
Version: 6.05-2
Severity: normal
It's strange that only the last one works (twitget is just a program
that uses Net::Twitter with SSL):
$ env -u PERL_LWP_SSL_CA_PATH
HTTPS_CA_DIR=/home/vinc17/wd/config/cacert:/etc/ssl/certs twitget
500 SSL_ca_path
4 matches
Mail list logo