[wp-trac] [WordPress Trac] #25007: WP_HTTP_Fsockopen does not verify SSL certificates
WordPress Trac
noreply at wordpress.org
Tue Sep 3 13:43:03 UTC 2013
#25007: WP_HTTP_Fsockopen does not verify SSL certificates
--------------------------+------------------
Reporter: rmccue | Owner:
Type: defect (bug) | Status: new
Priority: normal | Milestone: 3.7
Component: HTTP | Version:
Severity: major | Resolution:
Keywords: |
--------------------------+------------------
Changes (by rmccue):
* keywords: commit =>
Comment:
Misses IP addresses (which can only be specified in subjectAltName), so
could be vulnerable with CN = google.com, subjectAltName = IP: 127.0.0.1.
--
Ticket URL: <http://core.trac.wordpress.org/ticket/25007#comment:16>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list