Bug 1773327

Created attachment 1637097 [details]
cert8.db

When I try to go to https://bugzilla.mozilla.org, I get a MOZILLA_PKIX_ERROR_MITM_DETECTED page that says:

--- begin quote ---

bugzilla.mozilla.org is most likely a safe site, but a secure connection could not be established. This issue is caused by DigiCert Global Root CA, which is either software on your computer or your network.

What can you do about it?

bugzilla.mozilla.org has a security policy called HTTP Strict Transport Security (HSTS), which means that Firefox can only connect to it securely. You can’t add an exception to visit this site.

    If your antivirus software includes a feature that scans encrypted connections (often called “web scanning” or “https scanning”), you can disable that feature. If that doesn’t work, you can remove and reinstall the antivirus software.
    If you are on a corporate network, you can contact your IT department.
    If you are not familiar with DigiCert Global Root CA, then this could be an attack, and there is nothing you can do to access the site.

--- end quote ---

As far as I can tell, the certificate is entirely valid, and the DigiCert certificate in question is in my certificate database.  I deleted cert8.db and cert9.db and restarted firefox, and it worked for a few hours and then stopped working again.

I've attached cert8.db and cert9.db.

This is firefox-70.0-1.fc31.x86_64 and firefox-wayland-70.0-1.fc31.x86_64.  (I'm running firefox-wayland, but the same thing happens with regular firefox.)