I don’t know whether this explanation was written by Waddlesplash or Pulkomandy but it seriously undersells the importance of this change.
Rather than allowing “better” validation the change finally enables the basic checks. In all the years prior to this fix Haiku simply didn’t check names here, making all the security of SSL / TLS completely futile in all Haiku native applications such as WebPositive.
For example if you visited https://mybank.example/ you might expect that WebPositive would not accept a certificate for https://bad.example.com/ for that site, but until this fix was prompted you’d have been wrong and Haiku would give you no indication that there was any problem at all with your bank site.