Description
- mod_nss-CVE-2013-4566-NSSVerifyClient.diff fixes
CVE-2013-4566: If 'NSSVerifyClient none' is set in the
server / vhost context (i.e. when server is configured to
not request or require client certificate authentication
on the initial connection), and client certificate
authentication is expected to be required for a specific
directory via 'NSSVerifyClient require' setting, mod_nss
fails to properly require certificate authentication