This repository has been archived by the owner on Jan 19, 2023. It is now read-only.
Incorrect vulnerability details: CVE-2021-0341 - com.squareup.okhttp3:okhttp #296
Labels
bug
Something isn't working
Comments
sebastien-belin-adp
added a commit
to adaptris/interlok-okhttp
that referenced
this issue
Jun 30, 2022
|
when we can expect a fix for this? |
|
Sorry for the delay. We have been working on getting appropriate internal processes defined for dealing with data issues in the new data set. We are now working on catching up on the backlog. This issue has been passed to the research team on our internal tracking system, and I will report back here once more is known. |
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Vulnerability URL
Provide the URL to the vulnerability. For example:
Component URL
Provide the URL to the component. For example:
Description
CVE-2021-0341 is reported as vulnerability in version 4.10.0
This was already fixed in that version - square/okhttp#6724
See https://github.com/square/okhttp/blob/parent-4.10.0/okhttp/src/main/kotlin/okhttp3/internal/tls/OkHostnameVerifier.kt
The history contain Cherry pick fix for CVE-2021-0341 onto 4.9.x #6741
See https://github.com/square/okhttp/pull/6741/files for detail fix.
The text was updated successfully, but these errors were encountered: