Univention Bugzilla – Bug 47480
ca-certificates: Multiple issues (4.3)
Last modified: 2018-08-15 13:14:36 CEST
New Debian ca-certificates 20161130+nmu1+deb9u1 fixes: This update addresses the following issue(s): * Debian update 20161130+nmu1+deb9u1 20161130+nmu1+deb9u1 (Sat, 07 Jul 2018 01:08:40 +0200) * debian/ca-certificates.postinst: Prevent postinst failure on read-only /usr/local. * debian/control: Remove Christian Perrier from uploaders at his request. * mozilla/{certdata.txt,nssckbi.h}: Update Mozilla certificate authority bundle to version 2.22. The following certificate authorities were added (+): + "AC RAIZ FNMT-RCM" + "Amazon Root CA 1" + "Amazon Root CA 2" + "Amazon Root CA 3" + "Amazon Root CA 4" + "D-TRUST Root CA 3 2013" + "GDCA TrustAUTH R5 ROOT" + "LuxTrust Global Root 2" + "SSL.com EV Root Certification Authority ECC" + "SSL.com EV Root Certification Authority RSA R2" + "SSL.com Root Certification Authority ECC" + "SSL.com Root Certification Authority RSA" + "Symantec Class 1 Public Primary Certification Authority - G4" + "Symantec Class 1 Public Primary Certification Authority - G6" + "Symantec Class 2 Public Primary Certification Authority - G4" + "Symantec Class 2 Public Primary Certification Authority - G6" + "TrustCor ECA-1" + "TrustCor RootCert CA-1" + "TrustCor RootCert CA-2" + "TUBITAK Kamu SM SSL Kok Sertifikasi - Surum 1" The following certificate authorities were removed (-): - "ACEDICOM Root" - "AddTrust Public Services Root" - "AddTrust Qualified Certificates Root" - "ApplicationCA - Japanese Government" - "Buypass Class 2 CA 1" - "CA Disig Root R1" - "Certinomis - Autorité Racine" - "China Internet Network Information Center EV Certificates Root" - "CNNIC ROOT" - "Comodo Secure Services root" - "Comodo Trusted Services root" - "DST ACES CA X6" - "EBG Elektronik Sertifika Hizmet Saglayicisi" - "Equifax Secure CA" - "Equifax Secure eBusiness CA 1" - "Equifax Secure Global eBusiness CA" - "GeoTrust Global CA 2" - "IGC/A" - "Juur-SK" - "Microsec e-Szigno Root CA" - "PSCProcert" - "Root CA Generalitat Valenciana" - "RSA Security 2048 v3" - "Security Communication EV RootCA1" - "S-TRUST Authentication and Encryption Root CA 2005 PN" - "Swisscom Root CA 1" - "Swisscom Root EV CA 2" - "TUBITAK UEKAE Kok Sertifika Hizmet Saglayicisi - Surum 3" - "TURKTRUST Certificate Services Provider Root 2007" - "TÜRKTRUST Elektronik Sertifika Hizmet Sağlayıcısı H6" - "UTN USERFirst Hardware Root CA" - "Verisign Class 1 Public Primary Certification Authority" - "Verisign Class 2 Public Primary Certification Authority - G2" - "Verisign Class 3 Public Primary Certification Authority" - "WellsSecure Public Root Certificate Authority"
--- mirror/ftp/4.3/unmaintained/4.3-0/source/ca-certificates_20161130+nmu1.dsc +++ apt/ucs_4.3-0-errata4.3-1/source/ca-certificates_20161130+nmu1+deb9u1.dsc @@ -1,3 +1,70 @@ +20161130+nmu1+deb9u1 [Sat, 07 Jul 2018 01:08:40 +0200] Michael Shuler <michael@pbandjelly.org>: + + * debian/ca-certificates.postinst: + Prevent postinst failure on read-only /usr/local. Closes: #843722 + * debian/control: + Remove Christian Perrier from uploaders at his request. Closes: #894070 + * mozilla/{certdata.txt,nssckbi.h}: + Update Mozilla certificate authority bundle to version 2.22. + Closes: #858064 + The following certificate authorities were added (+): + + "AC RAIZ FNMT-RCM" + + "Amazon Root CA 1" + + "Amazon Root CA 2" + + "Amazon Root CA 3" + + "Amazon Root CA 4" + + "D-TRUST Root CA 3 2013" + + "GDCA TrustAUTH R5 ROOT" + + "LuxTrust Global Root 2" + + "SSL.com EV Root Certification Authority ECC" + + "SSL.com EV Root Certification Authority RSA R2" + + "SSL.com Root Certification Authority ECC" + + "SSL.com Root Certification Authority RSA" + + "Symantec Class 1 Public Primary Certification Authority - G4" + + "Symantec Class 1 Public Primary Certification Authority - G6" + + "Symantec Class 2 Public Primary Certification Authority - G4" + + "Symantec Class 2 Public Primary Certification Authority - G6" + + "TrustCor ECA-1" + + "TrustCor RootCert CA-1" + + "TrustCor RootCert CA-2" + + "TUBITAK Kamu SM SSL Kok Sertifikasi - Surum 1" + The following certificate authorities were removed (-): + - "ACEDICOM Root" + - "AddTrust Public Services Root" + - "AddTrust Qualified Certificates Root" + - "ApplicationCA - Japanese Government" + - "Buypass Class 2 CA 1" + - "CA Disig Root R1" + - "Certinomis - Autorité Racine" + - "China Internet Network Information Center EV Certificates Root" + - "CNNIC ROOT" + - "Comodo Secure Services root" + - "Comodo Trusted Services root" + - "DST ACES CA X6" + - "EBG Elektronik Sertifika Hizmet Saglayicisi" + - "Equifax Secure CA" + - "Equifax Secure eBusiness CA 1" + - "Equifax Secure Global eBusiness CA" + - "GeoTrust Global CA 2" + - "IGC/A" + - "Juur-SK" + - "Microsec e-Szigno Root CA" + - "PSCProcert" + - "Root CA Generalitat Valenciana" + - "RSA Security 2048 v3" + - "Security Communication EV RootCA1" + - "S-TRUST Authentication and Encryption Root CA 2005 PN" + - "Swisscom Root CA 1" + - "Swisscom Root EV CA 2" + - "TUBITAK UEKAE Kok Sertifika Hizmet Saglayicisi - Surum 3" + - "TURKTRUST Certificate Services Provider Root 2007" + - "TÜRKTRUST Elektronik Sertifika Hizmet Sağlayıcısı H6" + - "UTN USERFirst Hardware Root CA" + - "Verisign Class 1 Public Primary Certification Authority" + - "Verisign Class 2 Public Primary Certification Authority - G2" + - "Verisign Class 3 Public Primary Certification Authority" + - "WellsSecure Public Root Certificate Authority" + 20161130+nmu1 [Fri, 19 May 2017 16:53:16 +0200] Chris Lamb <lamby@debian.org>: * Non-maintainer upload. <http://10.200.17.11/4.3-1/#2193448724985817894>
OK: patches OK: piuparts OK: yaml OK: errata-announce ca-certificates.yaml [4.3-1] 08b8212b6b Bug #47480: ca-certificates 20161130+nmu1+deb9u1 doc/errata/staging/ca-certificates.yaml | 10 ++++++++++ 1 file changed, 10 insertions(+)
<http://errata.software-univention.de/ucs/4.3/172.html>