Update ca-certificates with latest NSS roots

Bug #1900727 reported by Quentin Bracken
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
ca-certificates (Ubuntu)
Undecided
Unassigned

Bug Description

Please refresh the default ca-certificates package with the latest NSS roots?

Specifically, we would like to ensure these two roots from NSS 3.54 (26 June 2020) are included in the package:

Bug 1641716 - Microsoft ECC Root Certificate Authority 2017
SHA-256 Fingerprint: 358DF39D764AF9E1B766E9C972DF352EE15CFAC227AF6AD1D70E8E4A6EDCBA02

Bug 1641716 - Microsoft RSA Root Certificate Authority 2017
SHA-256 Fingerprint: C741F70F4B2A8D88BF2E71C14122EF53EF10EBA0CFA5E64CFA20F418853073E0

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package ca-certificates - 20201027ubuntu0.20.10.1

---------------
ca-certificates (20201027ubuntu0.20.10.1) groovy-security; urgency=medium

  * mozilla/{certdata.txt,nssckbi.h}:
    Update Mozilla certificate authority bundle to version 2.44.
    (LP: #1900727)
    The following certificate authorities were added (+):
    + "Microsoft ECC Root Certificate Authority 2017"
    + "Microsoft RSA Root Certificate Authority 2017"
    + "e-Szigno Root CA 2017"
    + "certSIGN Root CA G2"
    + "Trustwave Global Certification Authority"
    + "Trustwave Global ECC P256 Certification Authority"
    + "Trustwave Global ECC P384 Certification Authority"
    The following certificate authorities were removed (-):
    - "Verisign Class 3 Public Primary Certification Authority - G3"
    - "Taiwan GRCA"
    - "Staat der Nederlanden Root CA - G2"
    - "EE Certification Centre Root CA"
    - "LuxTrust Global Root 2"
    - "OISTE WISeKey Global Root GA CA"

 -- Marc Deslauriers <email address hidden> Tue, 27 Oct 2020 07:37:00 -0400

Changed in ca-certificates (Ubuntu):
status: New → Fix Released
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package ca-certificates - 20201027ubuntu0.20.04.1

---------------
ca-certificates (20201027ubuntu0.20.04.1) focal-security; urgency=medium

  * mozilla/{certdata.txt,nssckbi.h}:
    Update Mozilla certificate authority bundle to version 2.44.
    (LP: #1900727)

 -- Marc Deslauriers <email address hidden> Tue, 27 Oct 2020 07:37:00 -0400

Changed in ca-certificates (Ubuntu):
status: New → Fix Released
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package ca-certificates - 20201027ubuntu0.18.04.1

---------------
ca-certificates (20201027ubuntu0.18.04.1) bionic-security; urgency=medium

  * mozilla/{certdata.txt,nssckbi.h}:
    Update Mozilla certificate authority bundle to version 2.44.
    (LP: #1900727)

 -- Marc Deslauriers <email address hidden> Tue, 27 Oct 2020 07:37:00 -0400

Changed in ca-certificates (Ubuntu):
status: New → Fix Released
To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers

Related questions