1 ca-certificates (20120722) UNRELEASED; urgency=low
3 Update mozilla/certdata.txt to version 1.85
4 Certificates added (+) (none removed):
5 + "Actalis Authentication Root CA"
6 + "Trustis FPS Root CA"
7 + "StartCom Certification Authority" (renewal/rehash)
8 + "StartCom Certification Authority G2"
9 + "Buypass Class 2 Root CA"
10 + "Buypass Class 3 Root CA"
12 -- Michael Shuler <michael@pbandjelly.org> Tue, 10 Jul 2012 14:06:21 -0500
14 ca-certificates (20120212) unstable; urgency=low
16 Update mozilla/certdata.txt to version 1.81
17 Certificates added (+) and removed (-):
18 + "Security Communication RootCA2"
20 + "Hellenic Academic and Research Institutions RootCA 2011"
21 - "Verisign Class 2 Public Primary Certification Authority"
22 - "Verisign Class 4 Public Primary Certification Authority - G2"
23 - "TC TrustCenter, Germany, Class 2 CA"
24 - "TC TrustCenter, Germany, Class 3 CA"
26 -- Michael Shuler <michael@pbandjelly.org> Sun, 12 Feb 2012 15:12:59 -0600
28 ca-certificates (20111211) unstable; urgency=low
30 Remove French Government IGC/A CA certificates. The RSA certificate is
31 included in the Mozilla bundle and the DSA certificate is not in use.
32 Remove expired signet.pl CAs.
33 Remove expired brasil.gov.br CA.
35 -- Michael Shuler <michael@pbandjelly.org> Sun, 11 Dec 2011 19:05:32 -0600
37 ca-certificates (20111025) unstable; urgency=low
39 Update mozilla/certdata.txt to latest (NSS branch version 1.64.2.13)
40 Certificates added (+) and removed (-):
41 + "AffirmTrust Commercial"
42 + "AffirmTrust Networking"
43 + "AffirmTrust Premium"
44 + "AffirmTrust Premium ECC"
46 + "Certinomis - Autorité Racine"
47 + "Certum Trusted Network CA"
48 + "Go Daddy Root Certificate Authority - G2"
49 + "Root CA Generalitat Valenciana"
50 + "Starfield Root Certificate Authority - G2"
51 + "Starfield Services Root Certificate Authority - G2"
52 + "TWCA Root Certification Authority"
53 - "AOL Time Warner Root Certification Authority 1"
54 - "AOL Time Warner Root Certification Authority 2"
56 - "Entrust.net Global Secure Personal CA"
57 - "Entrust.net Global Secure Server CA"
58 - "Entrust.net Secure Personal CA"
59 - "IPS Chained CAs root"
64 - "IPS Timestamping root"
65 - "Thawte Personal Freemail CA"
66 - "Thawte Time Stamping CA"
67 Update CAcert-Class 3-Subroot-certificate Closes: #630232
69 -- Michael Shuler <michael@pbandjelly.org> Sun, 23 Oct 2011 23:16:57 -0500
71 ca-certificates (20090708) unstable; urgency=low
74 - cacert.org/root.crt and cacert.org/class3.crt:
75 Both certificate files were deprecated with 20080809. Users of these
76 root certificates are encouraged to switch to
77 `cacert.org/cacert.org.crt' which contains both class 1 and class 3
78 roots joined in a single file.
79 - quovadis.bm/QuoVadis_Root_Certification_Authority.crt:
80 This certificate has been added into the Mozilla truststore and
81 is available as `mozilla/QuoVadis_Root_CA.crt'.
83 -- Philipp Kern <pkern@debian.org> Wed, 08 Jul 2009 23:19:56 +0200
85 ca-certificates (20090701) unstable; urgency=low
87 * Readded Equifax Secure Global eBusiness CA.
89 -- Philipp Kern <pkern@debian.org> Wed, 01 Jul 2009 14:47:02 +0200
91 ca-certificates (20090624) unstable; urgency=low
93 * This update eases the installation of local certification authorities
94 by providing a canonical location in `/usr/local/share/ca-certificates'.
95 All certificates found in this directory will automatically be included
96 into the list of trusted certificates. For details please see
97 `/usr/share/doc/ca-certificates/README.Debian'.
98 * New CA certificates:
99 - COMODO ECC Certification Authority
101 - Network Solutions Certificate Authority
102 - WellsSecure Public Root Certificate Authority
103 * Removed CA certificates:
104 - Equifax Secure Global eBusiness CA
105 - UTN USERFirst Object Root CA
107 -- Philipp Kern <pkern@debian.org> Wed, 24 Jun 2009 21:04:45 +0200
109 ca-certificates (20080809) unstable; urgency=low
111 * New cacert.org.pem joining both CACert Class 1 and Class 3 certificates.
112 This file can be used for proper certificate chaining if CACert
113 server certificates are used. The old class3.pem and root.pem
114 certificates are deprecated. This new file could safely serve as
115 a replacement for both.
117 -- Philipp Kern <pkern@debian.org> Sat, 09 Aug 2008 14:58:24 -0300
119 ca-certificates (20080617) unstable; urgency=low
121 * New CA certificates:
122 - gouv.fr: added French Government's IGC/A CA
123 - spi-inc.org: added new SPI CA certificate, created in reponse to
124 the infamous OpenSSL security update (already in 20080514)
125 * Removed CA certificates:
126 - spi-inc.org: removed old, still valid but possibly compromised
127 SPI CA certificates from 2006 and 2007 (already in 20080514)
129 -- Philipp Kern <pkern@debian.org> Fri, 20 Jun 2008 10:05:49 +0200
131 ca-certificates (20080411) unstable; urgency=low
133 * New CA certificates:
134 - spi-inc.org: current SPI CA certificate
135 - telesec.de: added Deutsche Telekom Root CA 2
137 + Camerfirma Chambers of Commerce Root
138 + Camerfirma Global Chambersign Root
139 + Certplus Class 2 Primary CA
140 + COMODO Certification Authority
141 + DigiCert Assured ID Root CA
142 + DigiCert Global Root CA
143 + DigiCert High Assurance EV Root CA
146 + Entrust Root Certification Authority
147 + Firmaprofesional Root CA
148 + GeoTrust Global CA 2
149 + GeoTrust Primary Certification Authority
150 + GeoTrust Universal CA
151 + GeoTrust Universal CA 2
152 + GlobalSign Root CA - R2
153 + Go Daddy Class 2 CA
154 + NetLock Business (Class B) Root
155 + NetLock Express (Class C) Root
156 + NetLock Notary (Class A) Root
157 + NetLock Qualified (Class QA) Root
162 + Starfield Class 2 CA
163 + StartCom Certification Authority
166 + SwissSign Gold CA - G2
167 + SwissSign Platinum CA - G2
168 + SwissSign Silver CA - G2
170 + thawte Primary Root CA
171 + TURKTRUST Certificate Services Provider Root 1
172 + TURKTRUST Certificate Services Provider Root 2
173 + VeriSign Class 3 Public Primary Certification Authority - G5
174 + Wells Fargo Root CA
175 + XRamp Global CA Root
176 * Removed CA certificates:
178 + Verisign Class 1 Public Primary OCSP Responder
179 + Verisign Class 2 Public Primary OCSP Responder
180 + Verisign Class 3 Public Primary OCSP Responder
181 + Verisign Secure Server OCSP Responder
183 -- Philipp Kern <pkern@debian.org> Mon, 07 Apr 2008 18:00:06 +0200
185 ca-certificates (20070303) unstable; urgency=low
187 * New CA certificates:
188 - debconf.org: DebConf
189 - cacert.org: add class3
191 -- Fumitoshi UKAI <ukai@debian.or.jp> Sat, 3 Mar 2007 21:21:50 -0800
193 ca-certificates (20040808) unstable; urgency=low
195 * New CA certificates:
196 - brasil.gov.gr: Autoridade Certificadora Raiz Brasileira
197 - signet.pl: Certification Center Signet (CC Signet)
198 - quovadis.bm: QuoVadis CA certificates
199 * Remove CA certificates:
200 - debian.org: revoked due to crack incident.
202 -- Fumitoshi UKAI <ukai@debian.or.jp> Sun, 8 Aug 2004 22:43:36 +0900