Bug#682470: Patch so Iceweasel can use the right certificate
Mechtilde
ooo at mechtilde.de
Mon Jul 23 05:18:42 UTC 2012
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Subject: libnss3: Send a patch so iceweasel can use the right certificate
Package: libnss3
Version: 2:3.13.5-1
Severity: normal
Tags: patch
- -- System Information:
Debian Release: wheezy/sid
APT prefers testing
APT policy: (900, 'testing'), (800, 'unstable'), (200, 'experimental')
Architecture: amd64 (x86_64)
Kernel: Linux 3.2.0-3-amd64 (SMP w/4 CPU cores)
Locale: LANG=de_DE, LC_CTYPE=de_DE (charmap=ISO-8859-1)
Shell: /bin/sh linked to /bin/dash
Versions of packages libnss3 depends on:
ii libc6 2.13-33
ii libnspr4 2:4.9.1-1
ii libnspr4-0d 2:4.9.1-1
ii libsqlite3-0 3.7.13-1
ii multiarch-support 2.13-33
ii zlib1g 1:1.2.7.dfsg-13
libnss3 recommends no packages.
libnss3 suggests no packages.
- -- no debconf information
I'm only the bearer of this patch with is written by
David McIlwraith, member of the cacert community
This patch is also published for arch linux
http://pastebin.com/Fcn6PUjR
This patch should make it possible to use the right
CaCert-Certificate (Root 3) with Iceweasel.
First I tried mysef to reopen
bugs.debian.org/cgi-bin/bugreport.cgi?bug=630232
which contains the announcement of the new root3 certificate.
David McIlwraith himself told me: "95_add_spi+cacert_ca_certs.patch is part
of the Debian src package as well as Arch; they are shared as far as I can
tell, so someone needs to open a new Debian bug and submit this proposed
patch. it removes the md5withRSAsignature cert and replaces it with the
sha256withRSAsignature one."
I hope this information is enough.
Kind regards
Mechtilde
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
iEYEARECAAYFAlAM3rIACgkQucZfh1OziSsS7ACeLYUfcgAniBh0YcuZ1aEbGYnF
wAcAn1tCqK5ltvS60F9cnCnl6x47J30n
=Ighe
-----END PGP SIGNATURE-----
More information about the pkg-mozilla-maintainers
mailing list