This is accurate to my understanding of the situation.
On Mon, Jun 1, 2020 at 11:33 AM Kurt Roeckx <k...@roeckx.be> wrote: > Just to clarify, as I understand it, openssl 1.0.2 (so libssl1.0.2 > in oldstable) still has the problem, which means things like > libcurl in oldstable have that problem. And removing the > certificate from the trust store fixes it. > > > Kurt > >