CVE-2015-6999
Affected software: Apple iOS prior to 9.1. The OCSP client fails to check certificate expiry, allowing a revoked certificate to appear valid and enabling remote spoofing of certificates. Root cause: OCSP expiry check not performed. Impact: potential trust compromise and spoofed TLS certificates. ...