|author||Tails developers <email@example.com>||2014-09-25 14:33:32 +0200|
|committer||Tails developers <firstname.lastname@example.org>||2014-09-25 14:33:32 +0200|
Explain why we did 1.1.2
Diffstat (limited to 'wiki/src/news/version_1.1.2.mdwn')
1 files changed, 11 insertions, 0 deletions
diff --git a/wiki/src/news/version_1.1.2.mdwn b/wiki/src/news/version_1.1.2.mdwn
index 246869c..05c672d 100644
@@ -8,6 +8,17 @@ This release fixes [[numerous security
issues|security/Numerous_security_holes_in_1.1.1]] and all users must
[[upgrade|doc/first_steps/upgrade]] as soon as possible.
+We prepared this release mainly to fix a [[serious
+in the Network Security Services (NSS) library used by Firefox and other
+products allows attackers to create forged RSA certificates.
+Before this release, users on a compromised network could be directed to sites
+using a fraudulent certificate and mistake them for legitimate sites. This could
+deceive them into revealing personal information such as usernames and
+passwords. It may also deceive users into downloading malware if they believe
+it’s coming from a trusted site.