[Bug 1258286] Re: CAcert should not be trusted by default

Launchpad Bug Tracker 1258286 at bugs.launchpad.net
Wed Apr 2 17:19:30 UTC 2014

This bug was fixed in the package nss - 3.15.4-0ubuntu0.12.10.2

nss (3.15.4-0ubuntu0.12.10.2) quantal-security; urgency=medium

  * SECURITY UPDATE: incorrect IDNA wildcard handling
    - debian/patches/CVE-2014-1492.patch: conform to RFC 6125 in
    - CVE-2014-1492
  * No longer ship cacert.org certificates. (LP: #1258286)
    - removed debian/patches/95_add_spi+cacert_ca_certs.patch
    - added debian/patches/95_add_spi_certs.patch
 -- Marc Deslauriers <marc.deslauriers at ubuntu.com>   Wed, 02 Apr 2014 10:21:09 -0400

You received this bug notification because you are a member of Mozilla
Bugs, which is subscribed to nss in Ubuntu.

  CAcert should not be trusted by default

To manage notifications about this bug go to:

More information about the Ubuntu-mozillateam-bugs mailing list