EPSS
Percentile
71.8%
It was found that WebKitGTK+ version performed TLS certificate verification too late, after sending an HTTP request rather than before. This issue allows a man-in-the-middle attack to possibly gain sensitive information.
www.openwall.com/lists/oss-security/2015/03/18/4
access.redhat.com/security/cve/CVE-2015-2330
bugs.archlinux.org/task/44237