============================================================================ Ubuntu Security Notice USN-1197-7 March 27, 2012 ca-certificates-java vulnerability ============================================================================ A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 11.10 - Ubuntu 11.04 - Ubuntu 10.10 - Ubuntu 10.04 LTS Summary: A certificate authority mis-issued fraudulent certificates. Software Description: - ca-certificates-java: Common CA certificates (JKS keystore) Details: USN-1197-5 addressed an issue in ca-certificates pertaining to the Dutch Certificate Authority DigiNotar mis-issuing fraudulent certificates. This update provides the corresponding update for ca-certificates-java. Original advisory details: It was discovered that Dutch Certificate Authority DigiNotar had mis-issued multiple fraudulent certificates. These certificates could allow an attacker to perform a "man in the middle" (MITM) attack which would make the user believe their connection is secure, but is actually being monitored. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 11.10: ca-certificates-java 20110912ubuntu3.1 Ubuntu 11.04: ca-certificates-java 20100412ubuntu0.11.04.1 Ubuntu 10.10: ca-certificates-java 20100412ubuntu0.10.10.1 Ubuntu 10.04 LTS: ca-certificates-java 20100406ubuntu1.1 After a standard system update you need to restart any application using ca-certificates-java to make all the necessary changes. References: http://www.ubuntu.com/usn/usn-1197-7 http://www.ubuntu.com/usn/usn-1197-1 https://launchpad.net/bugs/920758 Package Information: https://launchpad.net/ubuntu/+source/ca-certificates-java/20110912ubuntu3.1 https://launchpad.net/ubuntu/+source/ca-certificates-java/20100412ubuntu0.11.04.1 https://launchpad.net/ubuntu/+source/ca-certificates-java/20100412ubuntu0.10.10.1 https://launchpad.net/ubuntu/+source/ca-certificates-java/20100406ubuntu1.1