* sbin/update-ca-certificates: move the ca-certificates.crt bundle out of
the way before calling c_rehash, so that symlinks don't accidentally get
pointed here, breaking openssl certificate verification. LP: #854927.
* debian/postinst: kludge in support for running
update-ca-certificates --fresh on upgrade, to ensure we fix up the hash
for anyone who happened to install from a daily.
-- Steve Langasek <email address hidden> Tue, 20 Sep 2011 12:49:57 -0700
This bug was fixed in the package ca-certificates - 20110502+ nmu1ubuntu2
--------------- nmu1ubuntu2) oneiric; urgency=low
ca-certificates (20110502+
* Really only call --fresh on upgrade, instead of all the time; thanks to
Adam Conrad for catching this in the queue.
ca-certificates (20110502+ nmu1ubuntu1) oneiric; urgency=low
* sbin/update- ca-certificates : move the ca-certificates.crt bundle out of ca-certificates --fresh on upgrade, to ensure we fix up the hash
the way before calling c_rehash, so that symlinks don't accidentally get
pointed here, breaking openssl certificate verification. LP: #854927.
* debian/postinst: kludge in support for running
update-
for anyone who happened to install from a daily.
-- Steve Langasek <email address hidden> Tue, 20 Sep 2011 12:49:57 -0700