1 ca-certificates (20111025) unstable; urgency=low
3 * Update mozilla/certdata.txt to latest (NSS branch version 1.64.2.13)
4 Certificates added (+) and removed (-):
5 + "AffirmTrust Commercial"
6 + "AffirmTrust Networking"
7 + "AffirmTrust Premium"
8 + "AffirmTrust Premium ECC"
10 + "Bogus Global Trustee"
15 + "Bogus Mozilla Addons"
20 + "Certinomis - Autorité Racine"
21 + "Certum Trusted Network CA"
22 + "Explicitly Distrust DigiNotar Cyber CA"
23 + "Explicitly Distrust DigiNotar Cyber CA 2nd"
24 + "Explicitly Distrust DigiNotar Root CA"
25 + "Explicitly Distrust DigiNotar Services 1024 CA"
26 + "Explicitly Distrusted DigiNotar PKIoverheid"
27 + "Explicitly Distrusted DigiNotar PKIoverheid G2"
28 + "Go Daddy Root Certificate Authority - G2"
29 + "Root CA Generalitat Valenciana"
30 + "Starfield Root Certificate Authority - G2"
31 + "Starfield Services Root Certificate Authority - G2"
32 + "TWCA Root Certification Authority"
33 - "AOL Time Warner Root Certification Authority 1"
34 - "AOL Time Warner Root Certification Authority 2"
36 - "Entrust.net Global Secure Personal CA"
37 - "Entrust.net Global Secure Server CA"
38 - "Entrust.net Secure Personal CA"
39 - "IPS Chained CAs root"
44 - "IPS Timestamping root"
45 - "Thawte Personal Freemail CA"
46 - "Thawte Time Stamping CA"
47 * "Bogus *" CAs above address Comodo MITM 03/11 Closes: #619587
48 * Update CAcert-Class 3-Subroot-certificate Closes: #630232
50 -- Michael Shuler <michael@pbandjelly.org> Sun, 23 Oct 2011 23:16:57 -0500
52 ca-certificates (20090708) unstable; urgency=low
55 - cacert.org/root.crt and cacert.org/class3.crt:
56 Both certificate files were deprecated with 20080809. Users of these
57 root certificates are encouraged to switch to
58 `cacert.org/cacert.org.crt' which contains both class 1 and class 3
59 roots joined in a single file.
60 - quovadis.bm/QuoVadis_Root_Certification_Authority.crt:
61 This certificate has been added into the Mozilla truststore and
62 is available as `mozilla/QuoVadis_Root_CA.crt'.
64 -- Philipp Kern <pkern@debian.org> Wed, 08 Jul 2009 23:19:56 +0200
66 ca-certificates (20090701) unstable; urgency=low
68 * Readded Equifax Secure Global eBusiness CA.
70 -- Philipp Kern <pkern@debian.org> Wed, 01 Jul 2009 14:47:02 +0200
72 ca-certificates (20090624) unstable; urgency=low
74 * This update eases the installation of local certification authorities
75 by providing a canonical location in `/usr/local/share/ca-certificates'.
76 All certificates found in this directory will automatically be included
77 into the list of trusted certificates. For details please see
78 `/usr/share/doc/ca-certificates/README.Debian'.
79 * New CA certificates:
80 - COMODO ECC Certification Authority
82 - Network Solutions Certificate Authority
83 - WellsSecure Public Root Certificate Authority
84 * Removed CA certificates:
85 - Equifax Secure Global eBusiness CA
86 - UTN USERFirst Object Root CA
88 -- Philipp Kern <pkern@debian.org> Wed, 24 Jun 2009 21:04:45 +0200
90 ca-certificates (20080809) unstable; urgency=low
92 * New cacert.org.pem joining both CACert Class 1 and Class 3 certificates.
93 This file can be used for proper certificate chaining if CACert
94 server certificates are used. The old class3.pem and root.pem
95 certificates are deprecated. This new file could safely serve as
96 a replacement for both.
98 -- Philipp Kern <pkern@debian.org> Sat, 09 Aug 2008 14:58:24 -0300
100 ca-certificates (20080617) unstable; urgency=low
102 * New CA certificates:
103 - gouv.fr: added French Government's IGC/A CA
104 - spi-inc.org: added new SPI CA certificate, created in reponse to
105 the infamous OpenSSL security update (already in 20080514)
106 * Removed CA certificates:
107 - spi-inc.org: removed old, still valid but possibly compromised
108 SPI CA certificates from 2006 and 2007 (already in 20080514)
110 -- Philipp Kern <pkern@debian.org> Fri, 20 Jun 2008 10:05:49 +0200
112 ca-certificates (20080411) unstable; urgency=low
114 * New CA certificates:
115 - spi-inc.org: current SPI CA certificate
116 - telesec.de: added Deutsche Telekom Root CA 2
118 + Camerfirma Chambers of Commerce Root
119 + Camerfirma Global Chambersign Root
120 + Certplus Class 2 Primary CA
121 + COMODO Certification Authority
122 + DigiCert Assured ID Root CA
123 + DigiCert Global Root CA
124 + DigiCert High Assurance EV Root CA
127 + Entrust Root Certification Authority
128 + Firmaprofesional Root CA
129 + GeoTrust Global CA 2
130 + GeoTrust Primary Certification Authority
131 + GeoTrust Universal CA
132 + GeoTrust Universal CA 2
133 + GlobalSign Root CA - R2
134 + Go Daddy Class 2 CA
135 + NetLock Business (Class B) Root
136 + NetLock Express (Class C) Root
137 + NetLock Notary (Class A) Root
138 + NetLock Qualified (Class QA) Root
143 + Starfield Class 2 CA
144 + StartCom Certification Authority
147 + SwissSign Gold CA - G2
148 + SwissSign Platinum CA - G2
149 + SwissSign Silver CA - G2
151 + thawte Primary Root CA
152 + TURKTRUST Certificate Services Provider Root 1
153 + TURKTRUST Certificate Services Provider Root 2
154 + VeriSign Class 3 Public Primary Certification Authority - G5
155 + Wells Fargo Root CA
156 + XRamp Global CA Root
157 * Removed CA certificates:
159 + Verisign Class 1 Public Primary OCSP Responder
160 + Verisign Class 2 Public Primary OCSP Responder
161 + Verisign Class 3 Public Primary OCSP Responder
162 + Verisign Secure Server OCSP Responder
164 -- Philipp Kern <pkern@debian.org> Mon, 07 Apr 2008 18:00:06 +0200
166 ca-certificates (20070303) unstable; urgency=low
168 * New CA certificates:
169 - debconf.org: DebConf
170 - cacert.org: add class3
172 -- Fumitoshi UKAI <ukai@debian.or.jp> Sat, 3 Mar 2007 21:21:50 -0800
174 ca-certificates (20040808) unstable; urgency=low
176 * New CA certificates:
177 - brasil.gov.gr: Autoridade Certificadora Raiz Brasileira
178 - signet.pl: Certification Center Signet (CC Signet)
179 - quovadis.bm: QuoVadis CA certificates
180 * Remove CA certificates:
181 - debian.org: revoked due to crack incident.
183 -- Fumitoshi UKAI <ukai@debian.or.jp> Sun, 8 Aug 2004 22:43:36 +0900