All extensions disabled due to expiration of intermediate signing cert

Bug #1827959 reported by Dan Kortschak on 2019-05-07
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
firefox (Ubuntu)
Undecided
Unassigned

Bug Description

See https://bugzilla.mozilla.org/show_bug.cgi?id=1548973

Due to the expiration of a signing certificate, a collection of addon (some related to privacy) are disabled. There are a variety of workarounds, but these all reduce browser users safety (including the approach proposed by Mozilla).

Mozilla has released a version that repairs the cert chain 66.0.4 (see https://blog.mozilla.org/addons/2019/05/04/update-regarding-add-ons-in-firefox/), but this has not been packaged for any ubuntu version except Eoan Ermine.

Please release an update for other supported ubuntu versions.

Thanks for taking the time to report this bug and helping to make Ubuntu better. We appreciate the difficulties you are facing, but this appears to be a "regular" (non-security) bug. I have unmarked it as a security issue since this bug does not show evidence of allowing attackers to cross privilege boundaries nor directly cause loss of data/privacy. Please feel free to report any other bugs you may find.

information type: Private Security → Public
Changed in firefox (Ubuntu):
status: New → Confirmed
Alex Murray (alexmurray) wrote :

Thank you for taking the time to report this bug and helping to make Ubuntu better. This particular bug has already been reported and is a duplicate of bug 1827727, so it is being marked as such. Please look at the other bug report to see if there is any missing information that you can provide, or to see if there is a workaround for the bug. Additionally, any further discussion regarding the bug should occur in the other report. Please continue to report any other bugs you may find.

To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers