OpenCA Security Advisory – Multiple flaws in OpenCA before version 0.9.1.4 could cause OpenCA to use an incorrect certificate in the chain to determine the serial being checked which could lead to certificates that are revoked or expired being incorrectly accepted.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/32292/openca.txt
Source: https://packetstormsecurity.com/files/32292/openca.txt.html