Bug#514807: Regression in libgnutls security update

Benoit Branciard Benoit.Branciard at univ-paris1.fr
Mon Feb 16 18:16:28 UTC 2009

"GTE CyberTrust Global Root", which we happen to use widely in our 
institution, also is a version *1* x509 certificate.

So the libgnutls13 update broke several of our apps.

A quick search among the files in "ca-certificates" package shows up to 
20 version-1 certificates over a total of 102.

This is about 20% now-untrusted trustworthy root certificates, how could 
one regard this as being a harmless routine security update ?

Ce message a ete verifie par MailScanner
pour des virus ou des polluriels et rien de
suspect n'a ete trouve.

More information about the Pkg-gnutls-maint mailing list