* SECURITY UPDATE: Add patch from Debian version 3.12.11-3 rebased against
3.12.9 to remove the DigiNotar certificates and actively distrust them;
Thanks to Mike Hommey from Debian for the original patch (LP: #837557)
- mozilla/security/nss/lib/ckfw/builtins/certdata.*:
Explicitely distrust various DigiNotar CAs:
- DigiNotar Root CA
- DigiNotar Services 1024 CA
- DigiNotar Cyber CA
- DigiNotar Cyber CA 2nd
- DigiNotar PKIoverheid
- DigiNotar PKIoverheid G2
- mozilla/security/nss/lib/ckfw/builtins/certdata.*:
Remove DigiNotar Root CA.
* Add a symlink from Linux2.6.mk to Linux3.0.mk; This is a temporary hack to
let NSS build on a 3.0.x kernel
- update debian/rules
-- Micah Gersten <email address hidden> Fri, 09 Sep 2011 11:57:13 -0500
This bug was fixed in the package nss - 3.12.9+ ckbi-1. 82-0ubuntu5
--------------- ckbi-1. 82-0ubuntu5) oneiric; urgency=low
nss (3.12.9+
* SECURITY UPDATE: Add patch from Debian version 3.12.11-3 rebased against security/ nss/lib/ ckfw/builtins/ certdata. *: security/ nss/lib/ ckfw/builtins/ certdata. *:
3.12.9 to remove the DigiNotar certificates and actively distrust them;
Thanks to Mike Hommey from Debian for the original patch (LP: #837557)
- mozilla/
Explicitely distrust various DigiNotar CAs:
- DigiNotar Root CA
- DigiNotar Services 1024 CA
- DigiNotar Cyber CA
- DigiNotar Cyber CA 2nd
- DigiNotar PKIoverheid
- DigiNotar PKIoverheid G2
- mozilla/
Remove DigiNotar Root CA.
* Add a symlink from Linux2.6.mk to Linux3.0.mk; This is a temporary hack to
let NSS build on a 3.0.x kernel
- update debian/rules
-- Micah Gersten <email address hidden> Fri, 09 Sep 2011 11:57:13 -0500