[Secure-testing-team] Bug#640567: ca-certificates: Remove Staat_der_Nederlanden_Root_CA certificates
Sam Morris
sam at robots.org.uk
Mon Sep 5 18:49:41 UTC 2011
Package: ca-certificates
Version: 20110502+nmu1
Severity: grave
Tags: security
Justification: user security hole
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
ca-certificates still ships the following two certificates that are
being removed from Mozilla following the DigiNotar debacle:
Staat_der_Nederlanden_Root_CA.crt
Staat_der_Nederlanden_Root_CA_-_G2.crt
ref: https://bugzilla.mozilla.org/show_bug.cgi?id=683449
- -- System Information:
Debian Release: wheezy/sid
APT prefers stable-updates
APT policy: (550, 'stable-updates'), (550, 'stable'), (540, 'testing'), (530, 'unstable'), (520, 'experimental')
Architecture: amd64 (x86_64)
Kernel: Linux 3.0.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_GB.utf8, LC_CTYPE=en_GB.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Versions of packages ca-certificates depends on:
ii debconf [debconf-2.0] 1.5.36.1 Debian configuration management sy
ii openssl 1.0.0d-3 Secure Socket Layer (SSL) binary a
ca-certificates recommends no packages.
ca-certificates suggests no packages.
- -- debconf information excluded
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
iEYEARECAAYFAk5lGb8ACgkQshl/216gEHjvYACfdJQ4ZhhC1DTymMRQtUMsdu56
ChIAmwQGImXTKbGbG0aa9Q7UaHTrzuuH
=P52f
-----END PGP SIGNATURE-----
More information about the Secure-testing-team
mailing list