ZDNet

Goto Apple: GnuTLS falls foul of SSL certificate verification issues

Any version of a widely installed security library has been found to be vulnerable to specially crafted certificates that would allow a man-in-the-middle attack against applications using GnuTLS.
Computerworld

French intermediate certificate authority issues rogue certs for Google domains

An intermediate certificate authority (CA) registered to the French Ministry of Finance issued rogue certificates for several Google domains without authorization. Google detected the use of the ...