Mozilla Products: Trust settings for built-in roots ignored during EV certificate validation - mfsa2013-113ID: oval:org.secpod.oval:def:16246 | Date: (C)2013-12-20 (M)2023-11-18 |
Class: PATCH | Family: macos |
Firefox user Sijie Xia reported that if a user explicitly removes the trust for extended validation (EV) capable root certificates in the certificate manager, the change is not properly used when validating EV certificates, causing the setting to be ignored. This removes the ability of users to explicitly un-trust root certificates from specific certificate authorities.
Platform: |
Apple Mac OS 14 |
Apple Mac OS 13 |
Apple Mac OS 12 |
Apple Mac OS 11 |
Apple Mac OS X 10.15 |
Apple Mac OS X 10.14 |
Apple Mac OS X 10.13 |
Apple Mac OS X 10.11 |
Apple Mac OS X 10.12 |
Product: |
Mozilla Thunderbird |
Mozilla SeaMonkey |
Mozilla Firefox |
Mozilla Firefox ESR |