GSocketClient in GNOME GLib through 2.62.4 may occasionally connect directly to a target address instead of connecting via a proxy server when configured to do so, because the proxy_addr field is mishandled. This bug is timing-dependent and may occur only sporadically depending on network delays. The greatest security relevance is in use cases where a proxy is used to help with privacy/anonymity, even though there is no technical barrier to a direct connection. NOTE: versions before 2.60 are unaffected.
Metrics
Affected Vendors & Products
References
History
No history.

Status: PUBLISHED
Assigner: mitre
Published: 2020-01-09T19:23:03
Updated: 2024-08-04T09:11:04.536Z
Reserved: 2020-01-09T00:00:00
Link: CVE-2020-6750

No data.

Status : Modified
Published: 2020-01-09T20:15:11.567
Modified: 2024-11-21T05:36:07.697
Link: CVE-2020-6750
