Mandriva Linux Security Advisory 2010-032 – It was brought to our attention by Ludwig Nussel at SUSE the md5 collision certificate should not be included. This update removes the offending certificate. Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers. The mozilla nss library has consequently been rebuilt to pickup these changes and are also being provided.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/85942/MDVSA-2010-032.txt
Source: https://packetstormsecurity.com/files/85942/Mandriva-Linux-Security-Advisory-2010-032.html