Canary displaying NET::ERR_CERT_WEAK_SIGNATURE_ALGORITHM on Adobe website.
Reported by
hlvehe...@gmail.com,
Nov 18 2016
|
|||
Issue descriptionUserAgent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/56.0.2924.1 Safari/537.36 Steps to reproduce the problem: 1. Browse to https://get.adobe.com/ 2. Verify page displays 'Privacy Error', and details NET::ERR_CERT_WEAK_SIGNATURE_ALGORITHM 3. Verify the page renders without any error/issue in Live/Beta channels of Chrome. - I verified this on two PC's. - I don't believe it to be a virus/something malicious as the DNS resolves as expected to 193.104.215.66. What is the expected behavior? Shouldn't be receiving this error. Is it at all possible that the certificate got cached or corrupted during a Canary update? Or should they be two separate things? What went wrong? "Your connection is not private Attackers might be trying to steal your information from get.adobe.com (for example, passwords, messages, or credit cards). NET::ERR_CERT_WEAK_SIGNATURE_ALGORITHM" Did this work before? Yes Unsure, though I believe this was introduced within the last 3 builds. Chrome version: 56.0.2924.1 Channel: canary OS Version: 10.0 Flash Version: Shockwave Flash 23.0 r0
,
Nov 18 2016
Beta/Live both don't error out when browsing to the URL... that's why this seemed *odd*.
,
Nov 18 2016
M56 won't go to stable until 2017, at which point, all SHA-1 requests will be rejected by default, so suspect this may be intended (i.e., the expiration date checks that bypass SHA-1 reject-by-default logic have presumably been removed).
,
Nov 19 2016
Correct. This is WontFix/WorkingAsIntended. Similar to Microsoft and Mozilla, we are rolling out the disabling through the existing channels (e.g. Chrome Canary -> Dev -> Beta -> Stable, Mozilla Nightly -> Aurora -> etc, Windows "Fast" Channel). |
|||
►
Sign in to add a comment |
|||
Comment 1 by elawrence@chromium.org
, Nov 18 2016Labels: -Type-Bug-Security -Restrict-View-SecurityTeam Type-Bug
Status: Available (was: Unconfirmed)