-
ca-certificates (20170717~14.04.2) trusty; urgency=medium
* Add ca-certificates udeb package (LP: #1807023)
-- Mauricio Faria de Oliveira <email address hidden> Thu, 06 Dec 2018 16:20:55 -0200
-
ca-certificates (20170717~14.04.1) trusty-security; urgency=medium
* Update ca-certificates database to 20170717:
- backport changes from the Ubuntu 17.10 20170717 package
-- Marc Deslauriers <email address hidden> Wed, 27 Sep 2017 11:15:07 -0400
-
ca-certificates (20160104ubuntu0.14.04.1) trusty-security; urgency=medium
* Update ca-certificates database to 20160104:
- backport changes from the Ubuntu 16.04 LTS 20160104 package
-- Marc Deslauriers <email address hidden> Mon, 08 Feb 2016 10:28:49 -0500
-
ca-certificates (20141019ubuntu0.14.04.1) trusty-security; urgency=medium
* Update ca-certificates database to 20141019 (LP: #1423904):
- backport changes from the Ubuntu 15.04 20141019 package
-- Marc Deslauriers <email address hidden> Fri, 20 Feb 2015 08:17:24 -0500
-
ca-certificates (20130906ubuntu2) trusty; urgency=medium
* No longer ship cacert.org certificates. (LP: #1258286)
-- Marc Deslauriers <email address hidden> Wed, 19 Feb 2014 15:57:25 -0500
-
ca-certificates (20130906ubuntu1) trusty; urgency=low
* mozilla/certdata2pem.py: Work around openssl issue by shipping both
versions of the same signed roots. Previously, the script would simply
overwrite the first one found in the certdata.txt with the later one
since they both have the same CKA_LABEL, resulting in identical
filenames. (LP: #1014640)
-- Marc Deslauriers <email address hidden> Wed, 04 Dec 2013 16:53:53 -0500
-
ca-certificates (20130906) unstable; urgency=low
* Add ca-certificates-local source package example to documentation
* Update local certificate handling in README.Debian.
Closes: #718173, LP: #487845
* Update CA inclusion policy for ca-certificates in README.Debian. With
the exception of SPI and CAcert, only those CAs included in Mozilla's
trust store will be included in ca-certificates in Debian.
Closes: #647848, LP: #103074
* Clarify that not all software that uses SSL uses ca-certificates in
README.Debian. Closes: #664769
* Add mozilla/nssckbi.h to source, since certdata.txt no longer contains
a version number.
* Update debian/copyright to "Copyright: Mozilla Contributors" for
mozilla/{certdata.txt,nssckbi.h}.
* Update mozilla/certdata.txt to version 1.94
Certificates added (+) and removed (-):
+ "CA Disig Root R1"
+ "CA Disig Root R2"
+ "China Internet Network Information Center EV Certificates Root"
+ "D-TRUST Root Class 3 CA 2 2009"
+ "D-TRUST Root Class 3 CA 2 EV 2009"
+ "PSCProcert"
+ "Swisscom Root CA 2"
+ "Swisscom Root EV CA 2"
+ "TURKTRUST Certificate Services Provider Root 2007"
- "Equifax Secure eBusiness CA 2"
- "TC TrustCenter Universal CA III"
-- Michael Shuler <email address hidden> Fri, 06 Sep 2013 11:31:06 -0500
-
ca-certificates (20130610) unstable; urgency=low
[ Michael Shuler ]
* Install CAcert root and class3 certificates individually, no longer
installing the concatenation of the two. The individual certificates
are installed as cacert.org_root.crt and cacert.org_class3.crt for ease
of identification. Additionally, this allows openssl maintainers to drop
a problematic patch to c_rehash for handling multi-certificate files.
(see #642314) Closes: #692323
* Update Vcs-* fields for lintian vcs-field-not-canonical
* Update to machine-readable debian/copyright file v1.0
[ Thijs Kinkhorst ]
* Drop upgrading code for upgrades from Debian Etch and earlier.
* Remove obsolete debconf.org CA certificate. DebConf now uses an
intermediate certificate signed by SPI. (Closes: #693405)
* Remove obsolete SPI CA certiticate.
* Update Standards-Version: 3.9.4 (no changes needed)
* Clean up man page (LP#: 850997).
-- Thijs Kinkhorst <email address hidden> Mon, 10 Jun 2013 19:52:15 +0200
