Candidate: CVE-2010-3312
PublicDate: 2010-10-14 05:58:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3312
Description:
 Epiphany 2.28 and 2.29, when WebKit and LibSoup are used, unconditionally
 displays a closed-lock icon for any URL beginning with the https:
 substring, without any warning to the user, which allows man-in-the-middle
 attackers to spoof arbitrary https web sites via a crafted X.509 server
 certificate.
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_epiphany-browser:
upstream_epiphany-browser: released (2.29.91-1)
dapper_epiphany-browser: ignored (reached end-of-life)
hardy_epiphany-browser: ignored (reached end-of-life)
jaunty_epiphany-browser: ignored (reached end-of-life)
karmic_epiphany-browser: ignored (reached end-of-life)
lucid_epiphany-browser: not-affected (2.30.2-1ubuntu1.1)
maverick_epiphany-browser: ignored (reached end-of-life)
natty_epiphany-browser: not-affected (2.30.6-1ubuntu1)
oneiric_epiphany-browser: not-affected (2.30.6-1ubuntu1)
precise_epiphany-browser: not-affected (2.30.6-1ubuntu1)
devel_epiphany-browser: not-affected (2.30.6-1ubuntu1)