DEBIAN-CVE-2008-2420

DEBIAN-CVE-2008-2420 PUBLISHED

The OCSP functionality in stunnel before 4.24 does not properly search certificate revocation lists (CRL), which allows remote attackers to bypass intended access restrictions by using revoked certificates.

Affected Products

Vendor	Product	Versions
Debian:14	stunnel4	0, 0, 0
Debian:11	stunnel4	0, 0, 0
Debian:12	stunnel4	0, 0, 0
Debian:13	stunnel4	0, 0, 0

Timeline

May 23, 2008 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2008-2420 advisory

Open in Interactive Console →