New cacert.org.crt joining both CACert Class 1 and Class 3 certificates.

[ca-certificates.git] / debian / NEWS

diff --git a/debian/NEWS b/debian/NEWS
index 64d821e0e32fea1cfc929b05afb26568fd032825..1e19c9412844cfdcddeafa976a0bcc8dd55e030c 100644 (file)
--- a/debian/NEWS
+++ b/debian/NEWS
@@ -1,8 +1,76 @@
-ca-certificates (20080319) unstable; urgency=low
+ca-certificates (20080809) unstable; urgency=low
+
+  * New cacert.org.pem joining both CACert Class 1 and Class 3 certificates.
+    This file can be used for proper certificate chaining if CACert
+    server certificates are used.  The old class3.pem and root.pem
+    certificates are deprecated.  This new file could safely serve as
+    a replacement for both.
+
+ -- Philipp Kern <pkern@debian.org>  Sat, 09 Aug 2008 14:58:24 -0300
+
+ca-certificates (20080617) unstable; urgency=low
+
+  * New CA certificates:
+    - gouv.fr: added French Government's IGC/A CA
+    - spi-inc.org: added new SPI CA certificate, created in reponse to
+      the infamous OpenSSL security update (already in 20080514)
+  * Removed CA certificates:
+    - spi-inc.org: removed old, still valid but possibly compromised
+      SPI CA certificates from 2006 and 2007 (already in 20080514)
+
+ -- Philipp Kern <pkern@debian.org>  Fri, 20 Jun 2008 10:05:49 +0200
+
+ca-certificates (20080411) unstable; urgency=low
 
   * New CA certificates:
     - spi-inc.org: current SPI CA certificate
     - telesec.de: added Deutsche Telekom Root CA 2
+    - mozilla:
+      + Camerfirma Chambers of Commerce Root
+      + Camerfirma Global Chambersign Root
+      + Certplus Class 2 Primary CA
+      + COMODO Certification Authority
+      + DigiCert Assured ID Root CA
+      + DigiCert Global Root CA
+      + DigiCert High Assurance EV Root CA
+      + DST ACES CA X6
+      + DST Root CA X3
+      + Entrust Root Certification Authority
+      + Firmaprofesional Root CA
+      + GeoTrust Global CA 2
+      + GeoTrust Primary Certification Authority
+      + GeoTrust Universal CA
+      + GeoTrust Universal CA 2
+      + GlobalSign Root CA - R2
+      + Go Daddy Class 2 CA
+      + NetLock Business (Class B) Root
+      + NetLock Express (Class C) Root
+      + NetLock Notary (Class A) Root
+      + NetLock Qualified (Class QA) Root
+      + QuoVadis Root CA 2
+      + QuoVadis Root CA 3
+      + Secure Global CA
+      + SecureTrust CA
+      + Starfield Class 2 CA
+      + StartCom Certification Authority
+      + StartCom Ltd.
+      + Swisscom Root CA 1
+      + SwissSign Gold CA - G2
+      + SwissSign Platinum CA - G2
+      + SwissSign Silver CA - G2
+      + Taiwan GRCA
+      + thawte Primary Root CA
+      + TURKTRUST Certificate Services Provider Root 1
+      + TURKTRUST Certificate Services Provider Root 2
+      + VeriSign Class 3 Public Primary Certification Authority - G5
+      + Wells Fargo Root CA
+      + XRamp Global CA Root
+  * Removed CA certificates:
+    - mozilla:
+      + Verisign Class 1 Public Primary OCSP Responder
+      + Verisign Class 2 Public Primary OCSP Responder
+      + Verisign Class 3 Public Primary OCSP Responder
+      + Verisign Secure Server OCSP Responder
 
  -- Philipp Kern <pkern@debian.org>  Mon, 07 Apr 2008 18:00:06 +0200