CESA-2013:1866 -- centos 6 ca-certificatesID: oval:org.secpod.oval:def:203006 | Date: (C)2013-12-30 (M)2023-07-28 |
Class: PATCH | Family: unix |
This package contains the set of CA certificates chosen by the Mozilla Foundation for use with the Internet Public Key Infrastructure . It was found that a subordinate Certificate Authority mis-issued an intermediate certificate, which could be used to conduct man-in-the-middle attacks. This update renders that particular intermediate certificate as untrusted. All users should upgrade to this updated package. After installing the update, all applications using the ca-certificates package must be restarted for the changes to take effect.