The vulnerability is caused due to KSSL not properly setting the text format when displaying certificate information, which can be exploited to spoof certificates via e.g. certificates containing specially crafted RTF data in the Common Name (CN) field.
Hi, thanks for your interest, but check if the bug is already opened. *** This bug has been marked as a duplicate of bug 384227 ***