X-Git-Url: https://git.donarmstrong.com/?a=blobdiff_plain;f=debian%2Fchangelog;h=56ae1a98d90e57b9cc02361a2610443be36b71aa;hb=3ed820e2c681687a754e1b71af1eae612fadac7b;hp=ba81dfbe62c3d66e18228c27a04176c94c3a75d6;hpb=357d17d3b826ef6e3ca4cbb17a320364c9c0b4e1;p=ca-certificates.git diff --git a/debian/changelog b/debian/changelog index ba81dfb..56ae1a9 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,9 +1,12 @@ -ca-certificates (20111022.1) UNRELEASED; urgency=low +ca-certificates (20111025.1) UNRELEASED; urgency=low - TODO: set version to release date - s/UNRELEASED/unstable/ - dch --news with CA adds/removes list - ? #643667 Broken symlinks on upgrade due to plain c_rehash call + * Blacklist "Bogus *" and "Explicitly Distrust DigiNotar *" certificates + * Clarify CA audit note in README.debian; thanks to C.J. Adams-Collier for + the patch Closes: #594383 + + -- Michael Shuler Fri, 28 Oct 2011 15:49:51 -0500 + +ca-certificates (20111025) unstable; urgency=low [ Michael Shuler ] * Add 3.0 (native) source format @@ -56,7 +59,18 @@ ca-certificates (20111022.1) UNRELEASED; urgency=low * "Bogus *" CAs above address Comodo MITM 03/11 Closes: #619587 * Update CAcert-Class 3-Subroot-certificate Closes: #630232 - -- Michael Shuler Sun, 23 Oct 2011 21:37:30 -0500 + [ Steve Langasek ] + * sbin/update-ca-certificates: move the ca-certificates.crt bundle out of + the way before calling c_rehash, so that symlinks don't accidentally get + pointed here, breaking openssl certificate verification LP: #854927 + + [ Loïc Minier ] + * Drop bogus c_rehash on upgrades, which caused issue when + ca-certificates.crt was still in place; instead, call + update-ca-certificates --fresh on upgrades to this version, and + the usual update-ca-certificates otherwise Closes: #643667, #537382 + + -- Michael Shuler Tue, 25 Oct 2011 09:12:10 -0500 ca-certificates (20111022) unstable; urgency=low