#767272 and #866670 - update-ca-certificates and jks-keystore script integration

To: 767272@bugs.debian.org, 866670@bugs.debian.org
Cc: debian-security@lists.debian.org
Subject: #767272 and #866670 - update-ca-certificates and jks-keystore script integration
From: Laurent Bigonville <bigon@debian.org>
Date: Wed, 13 Nov 2019 17:41:41 +0100
Message-id: <[🔎] aa93d45c-49fe-a65d-2de4-cb252f6fcfc7@debian.org>
In-reply-to: <20141029183450.10948.66348.reportbug@sbyrnel>
References: <20141029183450.10948.66348.reportbug@sbyrnel> <20141029183450.10948.66348.reportbug@sbyrnel>

Hello,

Is there any progress on these two bugs?

This looks like a potential security issue as the certificates that arenot trusted anymore are still trusted by java programs as they are notremoved from the java trust store.


Could someone have a look at this?

Kind regards,

Laurent Bigonville

Reply to:

Prev by Date: Re: various security issues in VNC related packages
Next by Date: discontinuing rsync service on security.debian.org
Previous by thread: Re: various security issues in VNC related packages
Next by thread: discontinuing rsync service on security.debian.org
Index(es):
- Date
- Thread