Hello, Is there any progress on these two bugs?
This looks like a potential security issue as the certificates that are not trusted anymore are still trusted by java programs as they are not removed from the java trust store.
Could someone have a look at this? Kind regards, Laurent Bigonville __ This is the maintainer address of Debian's Java team <https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/pkg-java-maintainers>. Please use [email protected] for discussions and questions.
