[Pkg-chromium-maint] Bug#844631: chromium: certificate transparency error on i386

Adrian Thoroughgood adrian_t at btinternet.com
Fri Dec 2 00:36:51 UTC 2016

Dear Maintainer
This bug is preventing me from accessing amazon at all in Chromium. I get this message:
"Your connection is not private
Attackers might be trying to steal your information from www.amazon.co.uk (for example, passwords, messages, or credit cards). NET::ERR_CERTIFICATE_TRANSPARENCY_REQUIRED
www.amazon.co.uk normally uses encryption to protect your information. When Chromium tried to connect to www.amazon.co.uk this time, the website sent back unusual and incorrect credentials. This may happen when an attacker is trying to pretend to be www.amazon.co.uk, or a Wi-Fi sign-in screen has interrupted the connection. Your information is still secure because Chromium stopped the connection before any data was exchanged.
You cannot visit www.amazon.co.uk right now because the website uses HSTS. Network errors and attacks are usually temporary, so this page will probably work later."
I get error messages in other HTTPS websites but this is the only one I've found so far that is completely broken.
It has been like this ever since I installed the latest version of chromium 53.0.2785.143-1~deb8u1Ubuntu have had the fix incorporated into their packages for some time. Please can we have it too? I don't know how the severity classifications are defined but major websites being completely unusable seems pretty important to me.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/pkg-chromium-maint/attachments/20161202/93b685d3/attachment.html>

More information about the Pkg-chromium-maint mailing list