Bug #698753 reports that a certificate sub-authority improperly issued subscriber certificates with 512-bit RSA keys. At least one such certificate has been used to sign malware.
NSS has been patched to resolve this issue. Will there be an update to SeaMonkey 2.4.x that incorporates this patch? Or will we have to wait for SeaMonkey 2.5? I believe Mozilla has already released Firefox 8 and Firefox 3.6.24 to incorporate this patch. See <https://bugzilla.mozilla.org/show_bug.cgi?id=698753> and <http://www.entrust.net/advisories/malaysia.htm>. -- David E. Ross <http://www.rossde.com/>. Anyone who thinks government owns a monopoly on inefficient, obstructive bureaucracy has obviously never worked for a large corporation. © 1997 by David E. Ross _______________________________________________ support-seamonkey mailing list [email protected] https://lists.mozilla.org/listinfo/support-seamonkey
