TURKTRUST, a certificate authority in Mozilla’s root program, mis-issued two intermediate certificates to customers. TURKTRUST has scanned their certificate database and log files and confirmed that the mistake was made for only two certificates. External References: https://blog.mozilla.org/security/2013/01/03/revoking-trust-in-two-turktrust-certficates/ http://googleonlinesecurity.blogspot.in/2013/01/enhancing-digital-certificate-security.html http://www.mozilla.org/security/announce/2013/mfsa2013-20.html
Created nss tracking bugs for this issue Affects: fedora-all [bug 891806]
Mozilla/MITRE decided to revoke the CVE which was assigned to this issue. Reference: https://bugzilla.mozilla.org/show_bug.cgi?id=825022#c67
This issue has been addressed in following products: Red Hat Enterprise Linux 5 Via RHSA-2013:0214 https://rhn.redhat.com/errata/RHSA-2013-0214.html
This issue has been addressed in following products: Red Hat Enterprise Linux 6 Via RHSA-2013:0213 https://rhn.redhat.com/errata/RHSA-2013-0213.html