ca-certificates isn't updated in LTS 16.04
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
ca-certificates (Ubuntu) |
Fix Released
|
Undecided
|
Marc Deslauriers | ||
Trusty |
Fix Released
|
Undecided
|
Marc Deslauriers | ||
Xenial |
Fix Released
|
Undecided
|
Marc Deslauriers | ||
Zesty |
Fix Released
|
Undecided
|
Marc Deslauriers | ||
Artful |
Fix Released
|
Undecided
|
Marc Deslauriers |
Bug Description
ca-certificates should contain root certificates for new CA from Amazon
They are added in version 20170717, The Artful Aardvark (pre-release freeze)
But that isn't reflected neither in zesty, nor backports or security
We recently got a letter from Amazon to update our SSL certs till October 25. Would be extremely great if ca-certificates will be updated via unattended upgrades in-time.
Marking as security, because several CAs were removed (compromised?).
Or maybe there is a reason, why root cert list isn't updated on LTS releases?
ProblemType: Bug
DistroRelease: Ubuntu 17.04
Package: ca-certificates 20161130
ProcVersionSign
Uname: Linux 4.10.0-21-generic x86_64
ApportVersion: 2.20.4-0ubuntu4.5
Architecture: amd64
Date: Wed Sep 27 11:10:01 2017
Ec2AMI: ami-6edd3078
Ec2AMIManifest: (unknown)
Ec2Availability
Ec2InstanceType: m3.medium
Ec2Kernel: unavailable
Ec2Ramdisk: unavailable
PackageArchitec
SourcePackage: ca-certificates
UpgradeStatus: Upgraded to zesty on 2017-05-19 (131 days ago)
information type: | Private Security → Public Security |
Looks like I've generated bug report from 17.04 version (which doesn't have an update too), but most of our EC2 instances use 16.04.3 LTS and are affected too