-
ca-certificates (20230311ubuntu0.18.04.1) bionic-security; urgency=medium
* Update ca-certificates database to 20230311 (LP: #2020089)
- mozilla/{certdata.txt,nssckbi.h,blacklist.txt}: Update Mozilla
certificate authority bundle to version 2.60.
-- Marc Deslauriers <email address hidden> Thu, 18 May 2023 09:09:37 -0400
-
ca-certificates (20211016ubuntu0.18.04.1) bionic-security; urgency=medium
* Add Trustcor root certificates to mozilla/blacklist.txt: (LP: #1998785)
- "TrustCor RootCert CA-1"
- "TrustCor RootCert CA-2"
- "TrustCor ECA-1"
-- Marc Deslauriers <email address hidden> Mon, 05 Dec 2022 07:22:26 -0500
-
ca-certificates (20211016~18.04.1) bionic-security; urgency=medium
* Update ca-certificates database to 20211016 (LP: #1976631):
- mozilla/{certdata.txt,nssckbi.h}: Update Mozilla certificate
authority bundle to version 2.50.
- backport certain changes from the Ubuntu 22.04 LTS 20211016 package.
-- Marc Deslauriers <email address hidden> Thu, 02 Jun 2022 10:19:50 -0400
-
ca-certificates (20210119~18.04.2) bionic-security; urgency=medium
[ Dimitri John Ledkov ]
* mozilla/blacklist.txt: blacklist expired "DST Root CA X3".
(LP: #1944481)
-- Marc Deslauriers <email address hidden> Wed, 22 Sep 2021 07:46:54 -0400
-
ca-certificates (20210119~18.04.1) bionic-security; urgency=medium
* Update ca-certificates database to 20210119 (LP: #1914064):
- mozilla/{certdata.txt,nssckbi.h}: Update Mozilla certificate
authority bundle to version 2.46.
- backport certain changes from the Ubuntu 20.10 20210119 package
-- Marc Deslauriers <email address hidden> Mon, 01 Feb 2021 10:14:19 -0500
-
ca-certificates (20201027ubuntu0.18.04.1) bionic-security; urgency=medium
* mozilla/{certdata.txt,nssckbi.h}:
Update Mozilla certificate authority bundle to version 2.44.
(LP: #1900727)
-- Marc Deslauriers <email address hidden> Tue, 27 Oct 2020 07:37:00 -0400
-
ca-certificates (20190110~18.04.1) bionic-security; urgency=medium
* Update ca-certificates database to 20190110:
- backport certain changes from the Ubuntu 19.10 20190110 package
* mozilla/blacklist.txt: blacklist expired AddTrust External Root CA.
-- Marc Deslauriers <email address hidden> Fri, 29 May 2020 07:56:48 -0400
-
ca-certificates (20180409) unstable; urgency=medium
[ Michael Shuler ]
* mozilla/{certdata.txt,nssckbi.h}:
Update Mozilla certificate authority bundle to version 2.22.
The following certificate authorities were added (+):
+ "GDCA TrustAUTH R5 ROOT"
+ "SSL.com EV Root Certification Authority ECC"
+ "SSL.com EV Root Certification Authority RSA R2"
+ "SSL.com Root Certification Authority ECC"
+ "SSL.com Root Certification Authority RSA"
+ "TrustCor ECA-1"
+ "TrustCor RootCert CA-1"
+ "TrustCor RootCert CA-2"
The following certificate authorities were removed (-):
- "ACEDICOM Root"
- "AddTrust Low-Value Services Root"
- "AddTrust Public Services Root"
- "AddTrust Qualified Certificates Root"
- "CA Disig Root R1"
- "CNNIC ROOT"
- "Camerfirma Chambers of Commerce Root"
- "Camerfirma Global Chambersign Root"
- "Certinomis - Autorité Racine"
- "Certum Root CA"
- "China Internet Network Information Center EV Certificates Root"
- "Comodo Secure Services root"
- "Comodo Trusted Services root"
- "DST ACES CA X6"
- "GeoTrust Global CA 2"
- "PSCProcert"
- "Security Communication EV RootCA1"
- "Swisscom Root CA 1"
- "Swisscom Root CA 2"
- "Swisscom Root EV CA 2"
- "TURKTRUST Certificate Services Provider Root 2007"
- "TUBITAK UEKAE Kok Sertifika Hizmet Saglayicisi - Surum 3"
- "UTN USERFirst Hardware Root CA"
* mozilla/blacklist.txt
Update blacklist to remove certificates no longer in certdata.txt and
explicitly ignore distrusted certificates.
* debian/copyright:
Fix lintian insecure-copyright-format-uri with https URL.
* debian/changelog:
Fix lintian file-contains-trailing-whitespace.
* debian/{compat,control}:
Set to debhelper compat 11.
* Update openssl dependency to >= 1.1.0 to support `openssl rehash` and drop
usage of `c_rehash` script. Closes: #895075
[ Thijs Kinkhorst ]
* Remove Christian Perrier from uploaders at his request (closes: #894070).
* Checked for policy 4.1.4, no changes.
-- Michael Shuler <email address hidden> Mon, 09 Apr 2018 18:43:49 -0500
-
ca-certificates (20170717) unstable; urgency=medium
* Update to Standards-Version: 4.0.1
* debian/ca-certificates.postinst:
Prevent postinst failure on read-only /usr/local. Closes: #843722
* mozilla/certdata2pem.py:
Remove email-only roots from mozilla trust store. Closes: #721976
* mozilla/{certdata.txt,nssckbi.h}:
Update Mozilla certificate authority bundle to version 2.14.
Closes: #858064
The following certificate authorities were added (+):
+ "AC RAIZ FNMT-RCM"
+ "Amazon Root CA 1"
+ "Amazon Root CA 2"
+ "Amazon Root CA 3"
+ "Amazon Root CA 4"
+ "D-TRUST Root CA 3 2013"
+ "LuxTrust Global Root 2"
+ "TUBITAK Kamu SM SSL Kok Sertifikasi - Surum 1"
The following certificate authorities were removed (-):
- "AC Raiz Certicamara S.A."
- "ApplicationCA - Japanese Government"
- "Buypass Class 2 CA 1"
- "ComSign CA"
- "EBG Elektronik Sertifika Hizmet Saglayicisi"
- "Equifax Secure CA"
- "Equifax Secure eBusiness CA 1"
- "Equifax Secure Global eBusiness CA"
- "IGC/A"
- "Juur-SK"
- "Microsec e-Szigno Root CA"
- "Root CA Generalitat Valenciana"
- "RSA Security 2048 v3"
- "S-TRUST Authentication and Encryption Root CA 2005 PN"
- "S-TRUST Universal Root CA"
- "SwissSign Platinum CA - G2"
- "TC TrustCenter Class 3 CA II"
- "TÜRKTRUST Elektronik Sertifika Hizmet Sağlayıcısı H6"
- "UTN USERFirst Email Root CA"
- "Verisign Class 1 Public Primary Certification Authority"
- "Verisign Class 1 Public Primary Certification Authority - G3"
- "Verisign Class 2 Public Primary Certification Authority - G2"
- "Verisign Class 2 Public Primary Certification Authority - G3"
- "Verisign Class 3 Public Primary Certification Authority"
- "WellsSecure Public Root Certificate Authority"
-- Michael Shuler <email address hidden> Thu, 20 Jul 2017 00:18:08 -0500
