X-Git-Url: https://git.donarmstrong.com/?a=blobdiff_plain;f=debian%2Fchangelog;h=220510879690bc8e264251eef692a2260f377787;hb=b4e18c985ee73b80f62fe2e5cb45c4d6cebb02e3;hp=6b7766ecc1e0546660f04bb41c1b9a1788496d2b;hpb=59d5b9945f0956ddf247d9d9b32b9527808cc005;p=ca-certificates.git

diff --git a/debian/changelog b/debian/changelog
index 6b7766e..2205108 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,4 +1,15 @@
-ca-certificates (20111024) unstable; urgency=low
+ca-certificates (20111025.2) UNRELEASED; urgency=low
+
+  * Blacklist "Bogus *" and "Explicitly Distrust DigiNotar *" certificates.
+  * Clarify CA audit note in package description and README.debian. Thanks
+    to C.J. Adams-Collier for the patch.  Closes: #594383
+  * Remove French Government IGC/A CA certificates. The RSA certificate is
+    included in the Mozilla bundle and the DSA certificate is not in use.
+    Closes: #646767
+
+ -- Michael Shuler <michael@pbandjelly.org>  Sat, 29 Oct 2011 08:16:09 -0500
+
+ca-certificates (20111025) unstable; urgency=low
 
   [ Michael Shuler ]
   * Add 3.0 (native) source format
@@ -60,9 +71,9 @@ ca-certificates (20111024) unstable; urgency=low
   * Drop bogus c_rehash on upgrades, which caused issue when
     ca-certificates.crt was still in place; instead, call
     update-ca-certificates --fresh on upgrades to this version, and
-    the usual update-ca-certificates otherwise  Closes: #643667
+    the usual update-ca-certificates otherwise  Closes: #643667, #537382
 
- -- Michael Shuler <michael@pbandjelly.org>  Mon, 24 Oct 2011 19:17:28 -0500
+ -- Michael Shuler <michael@pbandjelly.org>  Tue, 25 Oct 2011 09:12:10 -0500
 
 ca-certificates (20111022) unstable; urgency=low