Hi Gerv, Here is the incident report for this reported issue.
Doug > -----Original Message----- > From: dev-security-policy [mailto:dev-security-policy- > bounces+doug.beattie=globalsign....@lists.mozilla.org] On Behalf Of Gervase > Markham via dev-security-policy > Sent: Thursday, March 16, 2017 6:57 AM > To: D B <douglas.beat...@gmail.com>; mozilla-dev-security- > pol...@lists.mozilla.org > Subject: Re: GlobalSign BR violation > > On 28/02/17 20:02, douglas.beat...@gmail.com wrote: > > And lastly this ticket. The Domain name was validated in accordance > > with the BRs, but there was a bug that allowed a user entered space to > > be included in some of the SAN values. While the value is not > > compliant with RFC 5280 or the BRs, there was no security issue with > > the certificate that was issued (it was likely not able to secure the > > intended subdomains). We'll provide an incident report for this. > > Hi Doug, > > Any news on when we might see this incident report? > > Thanks, > > Gerv > > _______________________________________________ > dev-security-policy mailing list > dev-security-policy@lists.mozilla.org > https://lists.mozilla.org/listinfo/dev-security-policy _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy
