Amazon Linux AMI Security Advisory: ALAS-2011-21
Advisory Release Date: 2014-09-14 14:43 Pacific
It was found that the Malaysia-based Digicert Sdn. Bhd. subordinate Certificate Authority (CA) issued HTTPS certificates with weak keys. This update renders any HTTPS certificates signed by that CA as untrusted. This covers all uses of the certificates, including SSL, S/MIME, and code signing. Note: Digicert Sdn. Bhd. is not the same company as found at digicert.com.
Run yum update nss to update your system.