Debian Linux Security Advisory 2599-1 - Google, Inc. discovered that the TurkTrust certification authority included in the Network Security Service libraries (nss) mis-issued two intermediate CA's which could be used to generate rogue end-entity certificates. This update explicitly distrusts those two intermediate CA's. The two existing TurkTrust root CA's remain active.
fa050be1646bd3c22490f9654914cd8a1e170c4c0da333945bcb0032099ed43c