[Secure-testing-team] Bug#639744: Compromised certificates for *.google.com issued by DigiNotar Root CA
Josh Triplett
josh at joshtriplett.org
Mon Aug 29 21:03:57 UTC 2011
Package: ca-certificates
Version: 20110502
Severity: critical
Tags: security
Please see the following:
https://bugzilla.mozilla.org/show_bug.cgi?id=682956
http://pastebin.com/ff7Yg663
http://pastebin.com/SwCZqskV
(or just search current news for "DigiNotar", optionally in conjunction
with "gmail" or "google".)
Whatever resolution Mozilla and others end up with (revocation of the
certificate or of the entire CA), ca-certificates will likely need to
do the same.
- Josh Triplett
More information about the Secure-testing-team
mailing list