This bug was fixed in the package xulrunner-1.9.2 - 1.9.2.27+build1
+nobinonly-0ubuntu0.11.04.1
---
xulrunner-1.9.2 (1.9.2.27+build1+nobinonly-0ubuntu0.11.04.1) natty-security;
urgency=low
* SECURITY UPDATE: New upstream release v1.9.2.27 (FIREFOX_3_6_27_BUILD1)
See the followi
This bug was fixed in the package thunderbird - 3.1.15+build1+nobinonly-
0ubuntu0.11.04.1
---
thunderbird (3.1.15+build1+nobinonly-0ubuntu0.11.04.1) natty-security;
urgency=low
* New upstream release v3.1.15 (THUNDERBIRD_3_1_15_BUILD1)
- see USN-1213-1
thunderbird (3.1.14+buil
This bug was fixed in the package thunderbird - 3.1.15+build1+nobinonly-
0ubuntu0.10.10.1
---
thunderbird (3.1.15+build1+nobinonly-0ubuntu0.10.10.1) maverick-security;
urgency=low
* New upstream release v3.1.15 (THUNDERBIRD_3_1_15_BUILD1)
- see USN-1213-1
thunderbird (3.1.14+b
This bug was fixed in the package thunderbird - 3.1.15+build1+nobinonly-
0ubuntu0.10.04.1
---
thunderbird (3.1.15+build1+nobinonly-0ubuntu0.10.04.1) lucid-security;
urgency=low
* New upstream release v3.1.15 (THUNDERBIRD_3_1_15_BUILD1)
- see USN-1213-1
thunderbird (3.1.14+buil
** Branch linked: lp:thunderbird/stable
--
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to thunderbird in Ubuntu.
https://bugs.launchpad.net/bugs/838322
Title:
Remove the exemptions for the Staat der Nederlanden root
Status in The Mozill
(In reply to Henrik Skupin (:whimboo) from comment #35)
> Because both websites have been issued new certificates meanwhile. Which
> means they are no valid testcases anymore.
New testcase, the Dutch secret service still has a Diginotar cert!
Staat der Nederlanden Root CA via Diginotar PKIoverhei
This needs to be verified on Aurora.
--
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to thunderbird in Ubuntu.
https://bugs.launchpad.net/bugs/838322
Title:
Remove the exemptions for the Staat der Nederlanden root
Status in The Mozilla F
** Description changed:
Here's an updated blog post on the DigiNotar issue:
http://blog.mozilla.com/security/2011/09/02/diginotar-removal-follow-up/
- The Staat der Nederlanden roots have been removed as well now and we in
- Ubuntu will follow suit.
+ The Staat der Nederlanden root exemptio
Because both websites have been issued new certificates meanwhile. Which
means they are no valid testcases anymore.
--
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to thunderbird in Ubuntu.
https://bugs.launchpad.net/bugs/838322
Title:
Re
(In reply to Vlad [QA] from comment #30)
> Setting resolution to Verified Fixed on Mozilla/5.0 (Windows NT 6.1;
> rv:6.0.2) Gecko/20100101 Firefox/6.0.2
>
> Both sites from comment29 are now showing the "Untrusted Connection Page"
> The error is displayed under technical details: "The certificate
firefox | 7.0~b4+build2+nobinonly-0ubuntu1 | oneiric | source,
amd64, i386
** Changed in: firefox (Ubuntu Oneiric)
Status: Triaged => Fix Released
--
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to thunderbird in Ubuntu.
https
thunderbird | 7.0~b2+build2+nobinonly1-0ubuntu1 | oneiric |
source, amd64, i386
** Changed in: thunderbird (Ubuntu Oneiric)
Importance: Undecided => Medium
** Changed in: thunderbird (Ubuntu Oneiric)
Status: New => Fix Released
** Changed in: thunderbird (Ubuntu Oneiric)
As
Builds are in the ubuntu-mozilla-security PPA for 3.1.14, mozillateam
/thunderbird-stable has 6.0.2
** Changed in: thunderbird (Ubuntu Maverick)
Importance: Undecided => Medium
** Changed in: thunderbird (Ubuntu Maverick)
Status: New => Fix Committed
** Changed in: thunderbird (Ubuntu
Sorry, I do have thunderbird builds ready, I just forgot to add it to
this bug.
** Changed in: thunderbird (Ubuntu Lucid)
Importance: Undecided => Medium
** Changed in: thunderbird (Ubuntu Lucid)
Status: New => In Progress
** Changed in: thunderbird (Ubuntu Lucid)
Assignee: (unass
To make this fully fixed, Thunderbird also needs to be updated to 6.0.2
(Oneiric) or 3.1.14 (earlier distributions). I see that you forgot to
list Thunderbird as affected, so I tried adding it.
** Also affects: thunderbird (Ubuntu)
Importance: Undecided
Status: New
--
You received this
** Branch linked: lp:ubuntu/lucid-security/firefox
** Branch linked: lp:ubuntu/maverick-security/firefox
** Branch linked: lp:ubuntu/natty-security/firefox
--
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to firefox in Ubuntu.
https://bugs.
** Branch linked: lp:ubuntu/lucid-security/xulrunner-1.9.2
** Branch linked: lp:ubuntu/maverick-security/xulrunner-1.9.2
--
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to firefox in Ubuntu.
https://bugs.launchpad.net/bugs/838322
Title:
This bug was fixed in the package xulrunner-1.9.2 - 1.9.2.22+build2
+nobinonly-0ubuntu0.10.04.1
---
xulrunner-1.9.2 (1.9.2.22+build2+nobinonly-0ubuntu0.10.04.1) lucid-security;
urgency=low
* New upstream release v1.9.2.22 (FIREFOX_3_6_22_BUILD2)
- Distrust all DigiNotar certs i
This bug was fixed in the package firefox - 6.0.2+build2+nobinonly-
0ubuntu0.11.04.1
---
firefox (6.0.2+build2+nobinonly-0ubuntu0.11.04.1) natty-security; urgency=low
* New upstream stable release (FIREFOX_6_0_2_BUILD2)
- Distrust and disable all DigiNotar certs including the St
This bug was fixed in the package firefox - 3.6.22+build2+nobinonly-
0ubuntu0.10.10.1
---
firefox (3.6.22+build2+nobinonly-0ubuntu0.10.10.1) maverick-security;
urgency=low
* New upstream release v3.6.22 (FIREFOX_3_6_22_BUILD2)
- Distrust and disable all DigiNotar certs includin
This bug was fixed in the package firefox - 3.6.22+build2+nobinonly-
0ubuntu0.10.04.1
---
firefox (3.6.22+build2+nobinonly-0ubuntu0.10.04.1) lucid-security; urgency=low
* New upstream release v3.6.22 (FIREFOX_3_6_22_BUILD2)
- Distrust and disable all DigiNotar certs including th
This bug was fixed in the package xulrunner-1.9.2 - 1.9.2.22+build2
+nobinonly-0ubuntu0.10.10.1
---
xulrunner-1.9.2 (1.9.2.22+build2+nobinonly-0ubuntu0.10.10.1) maverick-security;
urgency=low
* New upstream release v1.9.2.22 (FIREFOX_3_6_22_BUILD2)
- Distrust all DigiNotar cert
This bug needs to be verified against all the branches marked above as
fixed. The Verified state is also for trunk and not 6.0.2 as what you
have used for testing. Please test at least across 3.6.22 build 2, 6.0.2
build 2, and 7.0b4#2.
--
You received this bug notification because you are a membe
Setting resolution to Verified Fixed on Mozilla/5.0 (Windows NT 6.1;
rv:6.0.2) Gecko/20100101 Firefox/6.0.2
Both sites from comment29 are now showing the "Untrusted Connection Page"
The error is displayed under technical details: "The certificate is not trusted
because the issuer certificate is u
I've verified this against 3.6.22(build2), 6.0.2(build2), 7.0b4(build2),
and latest Nightly using Windows XP or Mac. The first url in comment #29
is now using a certificate, issued on 9/5, by a different certificate
authority so there is no error. This is to be expected. The second url
is untrusted
*** Bug 684747 has been marked as a duplicate of this bug. ***
--
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to firefox in Ubuntu.
https://bugs.launchpad.net/bugs/838322
Title:
Remove the exemptions for the Staat der Nederlanden root
S
** Branch linked: lp:ubuntu/thunderbird
--
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to firefox in Ubuntu.
https://bugs.launchpad.net/bugs/838322
Title:
Remove the exemptions for the Staat der Nederlanden root
Status in The Mozilla Fi
** Branch linked: lp:~mozillateam/xulrunner/xulrunner-1.9.2.maverick
--
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to firefox in Ubuntu.
https://bugs.launchpad.net/bugs/838322
Title:
Remove the exemptions for the Staat der Nederlanden r
** Branch linked: lp:~mozillateam/xulrunner/xulrunner-1.9.2.lucid
--
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to firefox in Ubuntu.
https://bugs.launchpad.net/bugs/838322
Title:
Remove the exemptions for the Staat der Nederlanden root
** Branch linked: lp:~mozillateam/thunderbird/thunderbird.maverick
** Branch linked: lp:~mozillateam/thunderbird/thunderbird.natty
--
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to firefox in Ubuntu.
https://bugs.launchpad.net/bugs/838322
** Branch linked: lp:~mozillateam/firefox/firefox-3.6.lucid
** Branch linked: lp:~mozillateam/firefox/firefox-3.6.maverick
** Branch linked: lp:~mozillateam/thunderbird/thunderbird.lucid
--
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to f
(In reply to Wan-Teh Chang from comment #14)
> How about something like "Staat der Nederlanden Root CA
> certified their subordinate DigiNotar CAs were good"?
Sshhh, but does that really matter? This is effectively and right now
used as revolving door by DigiNotar. I suggest to A) review this
deci
http://hg.mozilla.org/releases/mozilla-beta/rev/01d409d49c6a
http://hg.mozilla.org/releases/mozilla-beta/rev/ff20a21364bb
--
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to firefox in Ubuntu.
https://bugs.launchpad.net/bugs/838322
Title:
The following sites should work before the patch, and not after:
Staat der Nederlanden Root CA - G2 via Diginotar PKIOverheid CA Organisatie -
G2:
https://belastingbalie.eindhoven.nl/ (Issued: 4th Feb 2011)
Staat der Nederlanden Root CA via Diginotar PKIoverheid CA Overheid en
Bedrijven:
h
Also: http://hg.mozilla.org/mozilla-central/rev/5319db188180
--
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to firefox in Ubuntu.
https://bugs.launchpad.net/bugs/838322
Title:
Remove the exemptions for the Staat der Nederlanden root
Sta
Also: http://hg.mozilla.org/releases/mozilla-aurora/rev/a5a5c583c381
--
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to firefox in Ubuntu.
https://bugs.launchpad.net/bugs/838322
Title:
Remove the exemptions for the Staat der Nederlanden r
Could someone on this bug either indicate what verification steps should
be done to verify or even better go ahead and verify yourself. TIA!
--
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to firefox in Ubuntu.
https://bugs.launchpad.net/bug
Seconding Matt, QA would like to verify this behavior before signing
off, but it's unclear how we should be doing it. Any hints would be
appreciated.
--
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to firefox in Ubuntu.
https://bugs.launchpa
http://hg.mozilla.org/releases/mozilla-release/rev/e65f4c8bd243
http://hg.mozilla.org/releases/mozilla-release/rev/5b6c2f8ff6da
http://hg.mozilla.org/releases/mozilla-release/rev/14452010e012
--
You received this bug notification because you are a member of Desktop
Packages, which is subscribed t
http://hg.mozilla.org/releases/mozilla-1.9.2/rev/463dbdc80866
http://hg.mozilla.org/releases/mozilla-1.9.2/rev/d19ac6a6ef00
--
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to firefox in Ubuntu.
https://bugs.launchpad.net/bugs/838322
Title:
In a conference of the Dutch government held right now, they also give
up trust in their certificates and they expect the browsers to follow.
--
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to firefox in Ubuntu.
https://bugs.launchpad.net/bu
Considering the patch that landed is actually completely different than
what this bug was about, I'm updating the summary and such to reflect
that. It would be nice to get the actual patch added as an attachment
here.
--
You received this bug notification because you are a member of Desktop
Packa
http://hg.mozilla.org/mozilla-central/rev/471f4fbc9c85
http://hg.mozilla.org/releases/mozilla-aurora/rev/f020f92c79ca
http://hg.mozilla.org/releases/mozilla-beta/rev/f6dafd2dcc63
http://hg.mozilla.org/releases/mozilla-beta/rev/731b7bc62da3
http://hg.mozilla.org/releases/mozilla-release/rev/c32149f1
An explanation would be certainly helpful, thanks.
--
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to firefox in Ubuntu.
https://bugs.launchpad.net/bugs/838322
Title:
Remove the exemptions for the Staat der Nederlanden root
Status in The
Mozilla believes that the exemption for certificates under Staat der
Nederlanden roots is justified, and it is in line with what other
browsers are doing (which used different technical measures which made
an exception unnecessary). We will be posting on the security blog soon
with a fuller explana
(In reply to Wan-Teh Chang from comment #14)
> Comment on attachment 557158
> Patch (v1)
>
> > // By request of the Dutch government
>
> I suggest this comment be reworded. This comment
> implies we yielded to government pressure. I doubt
> that's the case.
Can someone please blog on the M
Comment on attachment 557158
Patch (v1)
> // By request of the Dutch government
I suggest this comment be reworded. This comment
implies we yielded to government pressure. I doubt
that's the case.
How about something like "Staat der Nederlanden Root CA
certified their subordinate DigiNotar
** Summary changed:
- DigiNotar patch erroneously blocks one of the two Staat der Nederlanden roots
+ Remove the exemptions for the Staat der Nederlanden root
** Description changed:
- The fix for bug #837557 unfortunately had a small regression for users
- of Staat der Nederlanden sites. One o
http://blog.mozilla.com/security/2011/09/02/diginotar-removal-follow-up/
says
"DigiNotar issues certificates as part of the Dutch government’s PKIoverheid
(PKIgovernment) program. These certificates are issued from a different
DigiNotar-controlled intermediate, and chain up to the Dutch governmen
** Branch linked: lp:thunderbird/beta
--
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to firefox in Ubuntu.
https://bugs.launchpad.net/bugs/838322
Title:
DigiNotar patch erroneously blocks one of the two Staat der
Nederlanden roots
Sta
** Branch linked: lp:~mozillateam/firefox/firefox.natty
--
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to firefox in Ubuntu.
https://bugs.launchpad.net/bugs/838322
Title:
DigiNotar patch erroneously blocks one of the two Staat der
Nede
Launchpad has imported 14 comments from the remote bug at
https://bugzilla.mozilla.org/show_bug.cgi?id=683449.
If you reply to an imported comment from within Launchpad, your comment
will be sent to the remote bug automatically. Read more about
Launchpad's inter-bugtracker facilities at
https://he
Natty won't be affected as 1.9.2.21 isn't being pushed to it.
** Also affects: xulrunner-1.9.2 (Ubuntu)
Importance: Undecided
Status: New
** Changed in: xulrunner-1.9.2 (Ubuntu Lucid)
Importance: Undecided => Medium
** Changed in: xulrunner-1.9.2 (Ubuntu Lucid)
Status: New =>
Oneiric doesn't have xulrunner-1.9.2
** Changed in: xulrunner-1.9.2 (Ubuntu Oneiric)
Status: New => Invalid
** Changed in: firefox (Ubuntu Lucid)
Status: Triaged => In Progress
** Changed in: firefox (Ubuntu Lucid)
Assignee: (unassigned) => Micah Gersten (micahg)
** Changed i
** Bug watch added: Mozilla Bugzilla #683449
https://bugzilla.mozilla.org/show_bug.cgi?id=683449
** Also affects: firefox via
https://bugzilla.mozilla.org/show_bug.cgi?id=683449
Importance: Unknown
Status: Unknown
--
You received this bug notification because you are a member of
** Also affects: firefox (Ubuntu Lucid)
Importance: Undecided
Status: New
** Changed in: firefox (Ubuntu Lucid)
Status: New => Triaged
** Changed in: firefox (Ubuntu Lucid)
Importance: Undecided => Medium
--
You received this bug notification because you are a member of Desk
Public bug reported:
The fix for bug #837557 unfortunately had a small regression for users
of Staat der Nederlanden sites. One of their two root CAs was blocked.
An update is being prepared to fix the issue.
** Affects: firefox
Importance: Unknown
Status: Unknown
** Affects: fire
57 matches
Mail list logo
