Scientific Linux: Errata Important SeaMonkey Security Update for CA Issue

Date: Thu, 1 Sep 2011 11:27:11 -0500
Reply-To: Troy Dawson 
Sender: Security Errata for Scientific Linux
 
From: Troy Dawson 
Subject: Security ERRATA Important: seamonkey on SL4.x i386/x86_64
Comments: To: "This email address is being protected from spambots. You need JavaScript enabled to view it."
 
MIME-Version: 1.0

Synopsis: Important: seamonkey security update
Issue Date: 2011-08-31

SeaMonkey is an open source web browser, email and newsgroup client, IRC
chat client, and HTML editor.

It was found that a Certificate Authority (CA) issued a fraudulent HTTPS
certificate. This update renders any HTTPS certificates signed by that
CA as untrusted, except for a select few. The now untrusted certificates
that were issued before July 1, 2011 can be manually re-enabled and used
again at your own risk in SeaMonkey; however, affected certificates
issued after this date cannot be re-enabled or used.

All SeaMonkey users should upgrade to these updated packages, which
correct this issue. After installing the update, SeaMonkey must be
restarted for the changes to take effect.

SL4:
 i386
 seamonkey-1.0.9-74.el4.i386.rpm
 seamonkey-mail-1.0.9-74.el4.i386.rpm
 seamonkey-js-debugger-1.0.9-74.el4.i386.rpm
 seamonkey-dom-inspector-1.0.9-74.el4.i386.rpm
 seamonkey-devel-1.0.9-74.el4.i386.rpm
 seamonkey-debuginfo-1.0.9-74.el4.i386.rpm
 seamonkey-chat-1.0.9-74.el4.i386.rpm
 x86_64
 seamonkey-js-debugger-1.0.9-74.el4.x86_64.rpm
 seamonkey-dom-inspector-1.0.9-74.el4.x86_64.rpm
 seamonkey-devel-1.0.9-74.el4.x86_64.rpm
 seamonkey-debuginfo-1.0.9-74.el4.x86_64.rpm
 seamonkey-chat-1.0.9-74.el4.x86_64.rpm
 seamonkey-1.0.9-74.el4.x86_64.rpm
 seamonkey-mail-1.0.9-74.el4.x86_64.rpm

- Scientific Linux Development Team