Deaktivierung eines Zertifikats in ca-certificates-java (Aktualisierung)
ID: | USN-1197-7 |
Distribution: | Ubuntu |
Plattformen: | Ubuntu 10.04 LTS, Ubuntu 10.10, Ubuntu 11.04, Ubuntu 11.10 |
Datum: | Di, 27. März 2012, 22:37 |
Referenzen: | Keine Angabe |
Applikationen: | ca-certificates-java |
Update von: | Deaktivierung eines Zertifikats in Mozilla Firefox |
Originalnachricht |
|
--===============5547866625390533951== Content-Type: multipart/signed; micalg="pgp-sha512"; protocol="application/pgp-signature"; boundary="=-5K/w8ynf/Oz3MYF08/CR" --=-5K/w8ynf/Oz3MYF08/CR Content-Type: text/plain; charset="UTF-8 Content-Transfer-Encoding: quoted-printable ========================================================================== Ubuntu Security Notice USN-1197-7 March 27, 2012 ca-certificates-java vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 11.10 - Ubuntu 11.04 - Ubuntu 10.10 - Ubuntu 10.04 LTS Summary: A certificate authority mis-issued fraudulent certificates. Software Description: - ca-certificates-java: Common CA certificates (JKS keystore) Details: USN-1197-5 addressed an issue in ca-certificates pertaining to the Dutch Certificate Authority DigiNotar mis-issuing fraudulent certificates. This update provides the corresponding update for ca-certificates-java. Original advisory details: It was discovered that Dutch Certificate Authority DigiNotar had mis-issued multiple fraudulent certificates. These certificates could allow an attacker to perform a "man in the middle" (MITM) attack which would make the user believe their connection is secure, but is actually being monitored. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 11.10: ca-certificates-java 20110912ubuntu3.1 Ubuntu 11.04: ca-certificates-java 20100412ubuntu0.11.04.1 Ubuntu 10.10: ca-certificates-java 20100412ubuntu0.10.10.1 Ubuntu 10.04 LTS: ca-certificates-java 20100406ubuntu1.1 After a standard system update you need to restart any application using ca-certificates-java to make all the necessary changes. References: http://www.ubuntu.com/usn/usn-1197-7 http://www.ubuntu.com/usn/usn-1197-1 https://launchpad.net/bugs/920758 Package Information: https://launchpad.net/ubuntu/+source/ca-certificates-java/20110912ubuntu3.1 https://launchpad.net/ubuntu/+source/ca-certificates-java/20100412ubuntu0.11.04.1 https://launchpad.net/ubuntu/+source/ca-certificates-java/20100412ubuntu0.10.10.1 https://launchpad.net/ubuntu/+source/ca-certificates-java/20100406ubuntu1.1 --ÕK/w8ynf/Oz3MYF08/CR Content-Type: application/pgp-signature; name="signature.asc" Content-Description: This is a digitally signed message part Content-Transfer-Encoding: 7bit -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQIcBAABCgAGBQJPcf60AAoJEGVp2FWnRL6TmGoQAJ6cB/Vb5VVpbo0uHNtzz5Qs F41oksQOdsTpZ0aKii4wiJP4hmjLS8EfGyWfdmT4HF1KY2yFy6RGyjvn+ZMQ0Jk5 O88iLIBT3nU2yr/nPjK8nyNBezfgja/gakmSRnASjsNq9aMhN1IXB6XH4Nhy+xOx eE6meMdPNhFLd/fdN/XBUPZJsHp5iPeo+I3VhRKg3z3xw0gr8J/nNCCfrLVqphTB C8pp8Gsav4qeN4LvXnuBE0x38s+l+v/qf+kq05U3Gl2DJpQExjAD03TevKPxhr3w ph67HJqcasEhvKsaUE0pS1Mou5v9cF9EWtHlq+6bqUpqs+9vmu5mpPGpBsMmtJ2l peH/iUhoMbvYhO+K3Rya2kJKQWdsbFXqMcBi4o6WvZ7CZmyPiqK6IDqz3jNusF5w JVLPrt9ijf5ZKPiXsFPD3aX1QF/r85r6JmGnaH1T7XFYp0igPkwUSXsjumGKYqTl p5nqVccgmJRlNmEWrVnRQJP5JXwuzR7RHgF4E12wDMjRlIDGXkXkFdNJBlDjJV3S HGXBgQERCyT5lRP7oiIwiur0sT/i/8BfHgpzEWGYbWHnl2oecVUOmIv0uM40aJgt Wf51BqFUT+Yh2YlTNFh0FadI6emSe6bN3Kij10MEXMQed1EG6DDUv3dzJACsFUZy 36HobHDbNGfvwJ2YzbF5 =BIGY -----END PGP SIGNATURE----- --=-5K/w8ynf/Oz3MYF08/CR-- --===============5547866625390533951== Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Disposition: inline -- ubuntu-security-announce mailing list ubuntu-security-announce@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce --===============5547866625390533951==-- |