Commit aa3f05f1 authored by Tails developers's avatar Tails developers
Browse files

Explain why we did 1.1.2

parent 1903faf2
......@@ -8,6 +8,17 @@ This release fixes [[numerous security
issues|security/Numerous_security_holes_in_1.1.1]] and all users must
[[upgrade|doc/first_steps/upgrade]] as soon as possible.
We prepared this release mainly to fix a [[serious
flaw|https://blog.mozilla.org/security/2014/09/24/rsa-signature-forgery-in-nss/]]
in the Network Security Services (NSS) library used by Firefox and other
products allows attackers to create forged RSA certificates.
Before this release, users on a compromised network could be directed to sites
using a fraudulent certificate and mistake them for legitimate sites. This could
deceive them into revealing personal information such as usernames and
passwords. It may also deceive users into downloading malware if they believe
it’s coming from a trusted site.
[[!toc levels=1]]
# Changes
......
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment