-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Subject: libnss3: Send a patch so iceweasel can use the right certificate Package: libnss3 Version: 2:3.13.5-1 Severity: normal Tags: patch
- -- System Information: Debian Release: wheezy/sid APT prefers testing APT policy: (900, 'testing'), (800, 'unstable'), (200, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 3.2.0-3-amd64 (SMP w/4 CPU cores) Locale: LANG=de_DE, LC_CTYPE=de_DE (charmap=ISO-8859-1) Shell: /bin/sh linked to /bin/dash Versions of packages libnss3 depends on: ii libc6 2.13-33 ii libnspr4 2:4.9.1-1 ii libnspr4-0d 2:4.9.1-1 ii libsqlite3-0 3.7.13-1 ii multiarch-support 2.13-33 ii zlib1g 1:1.2.7.dfsg-13 libnss3 recommends no packages. libnss3 suggests no packages. - -- no debconf information I'm only the bearer of this patch with is written by David McIlwraith, member of the cacert community This patch is also published for arch linux http://pastebin.com/Fcn6PUjR This patch should make it possible to use the right CaCert-Certificate (Root 3) with Iceweasel. First I tried mysef to reopen bugs.debian.org/cgi-bin/bugreport.cgi?bug=630232 which contains the announcement of the new root3 certificate. David McIlwraith himself told me: "95_add_spi+cacert_ca_certs.patch is part of the Debian src package as well as Arch; they are shared as far as I can tell, so someone needs to open a new Debian bug and submit this proposed patch. it removes the md5withRSAsignature cert and replaces it with the sha256withRSAsignature one." I hope this information is enough. Kind regards Mechtilde -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAlAM3rIACgkQucZfh1OziSsS7ACeLYUfcgAniBh0YcuZ1aEbGYnF wAcAn1tCqK5ltvS60F9cnCnl6x47J30n =Ighe -----END PGP SIGNATURE----- -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org