One update was not enough, so that means IT folks are getting under the hoods of browsers once again to see if they can clear up all of those untrustworthy certificates from the DigiNotar compromise.
Microsoft updated its security advisory 2607712 and added the root certificates for DigiNotar Root CA and the DigiNotar PKIoverheid to its Untrusted Certificate Store. The update should appear automatically on most Windows systems but Microsoft also made immediate download links for the update available for all Windows systems from Windows XP to Windows 7 and Windows 2008.
Mozilla released updates for Firefox browser, 6.0.2 and 3.6.22, and the Thunderbird email client, 6.0.2, 7.0 beta and 3.1.14; these new updates remove all trust from the DigiNotar CA. Firefox 3.6 and Thunderbird 3.1 users should select “Check for Updates” from the Help menu to get the update; other users should see the update arrive automatically in the next 24 hours.
Mobile users and Mac users will have to wait. There has been no news of updates for Apple’s iOS or Google’s Android.