ca security update

ID CESA-2013:1866
Type centos
Reporter CentOS Project
Modified 2013-12-20T02:31:29


CentOS Errata and Security Advisory CESA-2013:1866

This package contains the set of CA certificates chosen by the Mozilla Foundation for use with the Internet Public Key Infrastructure (PKI).

It was found that a subordinate Certificate Authority (CA) mis-issued an intermediate certificate, which could be used to conduct man-in-the-middle attacks. This update renders that particular intermediate certificate as untrusted. (BZ#1038894)

All users should upgrade to this updated package. After installing the update, all applications using the ca-certificates package must be restarted for the changes to take effect.

Merged security bulletin from advisories:

Affected packages: ca-certificates

Upstream details at: