X-Git-Url: https://git.donarmstrong.com/?a=blobdiff_plain;f=debian%2Fchangelog;h=a4ec1b8225949de5723242712d0dc4baa328eb10;hb=6c7d021df3558e75a3a7a5dc5fc889f01b3e5485;hp=0030321232ebadb8da4f1a47334dfd70f5671d2b;hpb=c10a0e7a362dd04634a4367c971aa2cf6fd03bb5;p=ca-certificates.git diff --git a/debian/changelog b/debian/changelog index 0030321..a4ec1b8 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,6 +1,21 @@ -ca-certificates (20111022.1) UNRELEASED; urgency=low +ca-certificates (20111211) unstable; urgency=low - TODO: set version to release date, unstable, and delete this line + * Clarify CA audit note in package description and README.debian. Thanks + to C.J. Adams-Collier for the patch. Closes: #594383 + * Remove French Government IGC/A CA certificates. The RSA certificate is + included in the Mozilla bundle and the DSA certificate is not in use. + Closes: #646767 + * Remove expired signet.pl CAs. Closes: #647849 + * Remove expired brasil.gov.br CA. + * Edit 20111025 changelog/NEWS entries to correctly list installed CAs + * Use 'set -e' in body of debian/postinst + * Update mozilla/certdata.txt to version 1.80 + (no added/removed CAs) + * Update mozilla/certdata2pem.py to parse NETSCAPE or NSS data + + -- Michael Shuler Sun, 11 Dec 2011 19:05:32 -0600 + +ca-certificates (20111025) unstable; urgency=low [ Michael Shuler ] * Add 3.0 (native) source format @@ -13,24 +28,8 @@ ca-certificates (20111022.1) UNRELEASED; urgency=low + "AffirmTrust Premium" + "AffirmTrust Premium ECC" + "A-Trust-nQual-03" - + "Bogus Global Trustee" - + "Bogus GMail" - + "Bogus Google" - + "Bogus kuix.de" - + "Bogus live.com" - + "Bogus Mozilla Addons" - + "Bogus Skype" - + "Bogus Yahoo 1" - + "Bogus Yahoo 2" - + "Bogus Yahoo 3" + "Certinomis - Autorité Racine" + "Certum Trusted Network CA" - + "Explicitly Distrust DigiNotar Cyber CA" - + "Explicitly Distrust DigiNotar Cyber CA 2nd" - + "Explicitly Distrust DigiNotar Root CA" - + "Explicitly Distrust DigiNotar Services 1024 CA" - + "Explicitly Distrusted DigiNotar PKIoverheid" - + "Explicitly Distrusted DigiNotar PKIoverheid G2" + "Go Daddy Root Certificate Authority - G2" + "Root CA Generalitat Valenciana" + "Starfield Root Certificate Authority - G2" @@ -50,9 +49,20 @@ ca-certificates (20111022.1) UNRELEASED; urgency=low - "IPS Timestamping root" - "Thawte Personal Freemail CA" - "Thawte Time Stamping CA" - * + * Update CAcert-Class 3-Subroot-certificate Closes: #630232 + + [ Steve Langasek ] + * sbin/update-ca-certificates: move the ca-certificates.crt bundle out of + the way before calling c_rehash, so that symlinks don't accidentally get + pointed here, breaking openssl certificate verification LP: #854927 + + [ Loïc Minier ] + * Drop bogus c_rehash on upgrades, which caused issue when + ca-certificates.crt was still in place; instead, call + update-ca-certificates --fresh on upgrades to this version, and + the usual update-ca-certificates otherwise Closes: #643667, #537382 - -- Michael Shuler Sun, 23 Oct 2011 16:56:46 -0500 + -- Michael Shuler Tue, 25 Oct 2011 09:12:10 -0500 ca-certificates (20111022) unstable; urgency=low