/ 
IO-Socket-SSL-2.085
River stage four • 401 direct dependents • 2524 total dependents
⭐ Starred 37 GitHub stars
Security Advisories (1)
CVE-2009-3024 (2009-08-31)

The verify_hostname_of_cert function in the certificate checking feature in IO-Socket-SSL (IO::Socket::SSL) 1.14 through 1.25 only matches the prefix of a hostname when no wildcard is used, which allows remote attackers to bypass the hostname check for a certificate.

Changes for version 2.085 - 2024-01-22

  • #147 fix test which failed due to behavior changes in OpenSSL 3.2
  • update PublicSuffix
  • add examples for TLS JA3/JA4 fingerprinting to tls_fingerprint/

Modules

IO::Socket::SSL
SSL sockets with IO::Socket interface
IO::Socket::SSL::Intercept
SSL interception (man in the middle)
IO::Socket::SSL::PublicSuffix
provide access to Mozilla's list of effective TLD names
IO::Socket::SSL::Utils
loading, storing, creating certificates and keys

Provides

IO::Socket::SSL::OCSP_Cache
in lib/IO/Socket/SSL.pm
IO::Socket::SSL::OCSP_Resolver
in lib/IO/Socket/SSL.pm
IO::Socket::SSL::SSL_Context
in lib/IO/Socket/SSL.pm
IO::Socket::SSL::SSL_HANDLE
in lib/IO/Socket/SSL.pm
IO::Socket::SSL::Session_Cache
in lib/IO/Socket/SSL.pm
IO::Socket::SSL::Trace
in lib/IO/Socket/SSL.pm

Examples

Other files