Just to clarify, as I understand it, openssl 1.0.2 (so libssl1.0.2 in oldstable) still has the problem, which means things like libcurl in oldstable have that problem. And removing the certificate from the trust store fixes it.
Kurt
- Bug#961907: ca-certificates: Remove expired mozilla... Axel Beckert
- Bug#961907: ca-certificates: Remove expired mo... Axel Beckert
- Bug#961907: ca-certificates: Remove expired mo... Martin Bagge / brother
- Bug#961907: ca-certificates: Remove expired mo... Kurt Roeckx
- Bug#961907: ca-certificates: Remove expire... Kurt Roeckx
- Bug#961907: ca-certificates: Remove ex... Martin Bagge / brother
- Bug#961907: ca-certificates: Remove expired mo... Damien Norris
