This bug was fixed in the package nss - 3.15.4-0ubuntu0.12.10.2 --------------- nss (3.15.4-0ubuntu0.12.10.2) quantal-security; urgency=medium
* SECURITY UPDATE: incorrect IDNA wildcard handling - debian/patches/CVE-2014-1492.patch: conform to RFC 6125 in nss/lib/certdb/certdb.c. - CVE-2014-1492 * No longer ship cacert.org certificates. (LP: #1258286) - removed debian/patches/95_add_spi+cacert_ca_certs.patch - added debian/patches/95_add_spi_certs.patch -- Marc Deslauriers <marc.deslauri...@ubuntu.com> Wed, 02 Apr 2014 10:21:09 -0400 -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to nss in Ubuntu. https://bugs.launchpad.net/bugs/1258286 Title: CAcert should not be trusted by default To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/ca-certificates/+bug/1258286/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs