Bug#736061: libnss3: system shared db enabled leads to local overrides being ignored
Yves-Alexis Perez
corsac at debian.org
Sun Jan 19 10:08:24 UTC 2014
Package: libnss3
Version: 2:3.15.4-1
Severity: important
Hi,
I use evolution which uses the shared db in ~/.pki since a long time.
I've added my own root AC there, and disabled pretty much every other AC
since I won't use them (and actually receiving a certificate chain
leading to a common AC would mean someone is trying to MITM me…).
With the 2:3.15.4-1 nss upload (which apparently enable the system
shared db) my local AC is gone from the authority and all the other
trust bits have been reset to the default.
I've not set it RC, but it's really pretty annoying and can be
dangerous. I'm unsure if the problem lies in nss or in the way evolution
loads the DB.
Regards,
--
Yves-Alexis
-- System Information:
Debian Release: jessie/sid
APT prefers unstable
APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable'), (450, 'experimental')
Architecture: amd64 (x86_64)
Kernel: Linux 3.12-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=fr_FR.utf8, LC_CTYPE=fr_FR.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Versions of packages libnss3 depends on:
ii libc6 2.17-97
ii libnspr4 2:4.10.2-1
ii libnspr4-0d 2:4.10.2-1
ii libnss3-nssdb 2:3.15.4-1
ii libsqlite3-0 3.8.2-1
ii multiarch-support 2.17-97
ii zlib1g 1:1.2.8.dfsg-1
libnss3 recommends no packages.
libnss3 suggests no packages.
-- no debconf information
More information about the pkg-mozilla-maintainers
mailing list