seclists.org · Apr 28, 2026 12:50 AM UTC

oss-sec: CVE-2026-41603: Apache Thrift: Java TSSLTransportFactory hostname verification

Summary

Severity: critical Affected versions: - Apache Thrift before 0.23.0 Description: Improper Validation of Certificate with Host Mismatch vulnerability in Apache T...

Original reporting

AFBytes is a read-only aggregator. Use the original source for full context and complete reporting.

Open original source

oss-sec: CVE-2026-41603: Apache Thrift: Java TSSLTransportFactory hostname verification

Summary

Original reporting

Related coverage

Koei Tecmo Reveals Series Sales Numbers

MLB: The Show 26, WWE 2K26, Marathon, and More Debut on the Canadian Charts for March 2026

Beijing blocks Meta acquisition of Chinese AI startup Manus

Fintechs gaining direct access to core payment rails, signal shift in banking power balance

How to Turn Webinars Into Your Best Lead Gen Channel in 5 Phases

Jeff Bezos' Project Prometheus explores London AI hub expansion