1 ca-certificates (20121103) UNRELEASED; urgency=low
3 Update mozilla/certdata.txt to version 1.86
4 Certificates added (+) (none removed):
5 + "Actalis Authentication Root CA"
6 + "Trustis FPS Root CA"
7 + "StartCom Certification Authority" (renewal/rehash)
8 + "StartCom Certification Authority G2"
9 + "Buypass Class 2 Root CA"
10 + "Buypass Class 3 Root CA"
11 + "TÜRKTRUST Elektronik Sertifika Hizmet Sağlayıcısı"
12 + "T-TeleSec GlobalRoot Class 3"
13 + "EE Certification Centre Root CA"
14 Remove CAcert CA certificates due to non-free license
16 -- Michael Shuler <michael@pbandjelly.org> Sat, 03 Nov 2012 15:48:32 -0500
18 ca-certificates (20120212) unstable; urgency=low
20 Update mozilla/certdata.txt to version 1.81
21 Certificates added (+) and removed (-):
22 + "Security Communication RootCA2"
24 + "Hellenic Academic and Research Institutions RootCA 2011"
25 - "Verisign Class 2 Public Primary Certification Authority"
26 - "Verisign Class 4 Public Primary Certification Authority - G2"
27 - "TC TrustCenter, Germany, Class 2 CA"
28 - "TC TrustCenter, Germany, Class 3 CA"
30 -- Michael Shuler <michael@pbandjelly.org> Sun, 12 Feb 2012 15:12:59 -0600
32 ca-certificates (20111211) unstable; urgency=low
34 Remove French Government IGC/A CA certificates. The RSA certificate is
35 included in the Mozilla bundle and the DSA certificate is not in use.
36 Remove expired signet.pl CAs.
37 Remove expired brasil.gov.br CA.
39 -- Michael Shuler <michael@pbandjelly.org> Sun, 11 Dec 2011 19:05:32 -0600
41 ca-certificates (20111025) unstable; urgency=low
43 Update mozilla/certdata.txt to latest (NSS branch version 1.64.2.13)
44 Certificates added (+) and removed (-):
45 + "AffirmTrust Commercial"
46 + "AffirmTrust Networking"
47 + "AffirmTrust Premium"
48 + "AffirmTrust Premium ECC"
50 + "Certinomis - Autorité Racine"
51 + "Certum Trusted Network CA"
52 + "Go Daddy Root Certificate Authority - G2"
53 + "Root CA Generalitat Valenciana"
54 + "Starfield Root Certificate Authority - G2"
55 + "Starfield Services Root Certificate Authority - G2"
56 + "TWCA Root Certification Authority"
57 - "AOL Time Warner Root Certification Authority 1"
58 - "AOL Time Warner Root Certification Authority 2"
60 - "Entrust.net Global Secure Personal CA"
61 - "Entrust.net Global Secure Server CA"
62 - "Entrust.net Secure Personal CA"
63 - "IPS Chained CAs root"
68 - "IPS Timestamping root"
69 - "Thawte Personal Freemail CA"
70 - "Thawte Time Stamping CA"
71 Update CAcert-Class 3-Subroot-certificate Closes: #630232
73 -- Michael Shuler <michael@pbandjelly.org> Sun, 23 Oct 2011 23:16:57 -0500
75 ca-certificates (20090708) unstable; urgency=low
78 - cacert.org/root.crt and cacert.org/class3.crt:
79 Both certificate files were deprecated with 20080809. Users of these
80 root certificates are encouraged to switch to
81 `cacert.org/cacert.org.crt' which contains both class 1 and class 3
82 roots joined in a single file.
83 - quovadis.bm/QuoVadis_Root_Certification_Authority.crt:
84 This certificate has been added into the Mozilla truststore and
85 is available as `mozilla/QuoVadis_Root_CA.crt'.
87 -- Philipp Kern <pkern@debian.org> Wed, 08 Jul 2009 23:19:56 +0200
89 ca-certificates (20090701) unstable; urgency=low
91 * Readded Equifax Secure Global eBusiness CA.
93 -- Philipp Kern <pkern@debian.org> Wed, 01 Jul 2009 14:47:02 +0200
95 ca-certificates (20090624) unstable; urgency=low
97 * This update eases the installation of local certification authorities
98 by providing a canonical location in `/usr/local/share/ca-certificates'.
99 All certificates found in this directory will automatically be included
100 into the list of trusted certificates. For details please see
101 `/usr/share/doc/ca-certificates/README.Debian'.
102 * New CA certificates:
103 - COMODO ECC Certification Authority
105 - Network Solutions Certificate Authority
106 - WellsSecure Public Root Certificate Authority
107 * Removed CA certificates:
108 - Equifax Secure Global eBusiness CA
109 - UTN USERFirst Object Root CA
111 -- Philipp Kern <pkern@debian.org> Wed, 24 Jun 2009 21:04:45 +0200
113 ca-certificates (20080809) unstable; urgency=low
115 * New cacert.org.pem joining both CACert Class 1 and Class 3 certificates.
116 This file can be used for proper certificate chaining if CACert
117 server certificates are used. The old class3.pem and root.pem
118 certificates are deprecated. This new file could safely serve as
119 a replacement for both.
121 -- Philipp Kern <pkern@debian.org> Sat, 09 Aug 2008 14:58:24 -0300
123 ca-certificates (20080617) unstable; urgency=low
125 * New CA certificates:
126 - gouv.fr: added French Government's IGC/A CA
127 - spi-inc.org: added new SPI CA certificate, created in reponse to
128 the infamous OpenSSL security update (already in 20080514)
129 * Removed CA certificates:
130 - spi-inc.org: removed old, still valid but possibly compromised
131 SPI CA certificates from 2006 and 2007 (already in 20080514)
133 -- Philipp Kern <pkern@debian.org> Fri, 20 Jun 2008 10:05:49 +0200
135 ca-certificates (20080411) unstable; urgency=low
137 * New CA certificates:
138 - spi-inc.org: current SPI CA certificate
139 - telesec.de: added Deutsche Telekom Root CA 2
141 + Camerfirma Chambers of Commerce Root
142 + Camerfirma Global Chambersign Root
143 + Certplus Class 2 Primary CA
144 + COMODO Certification Authority
145 + DigiCert Assured ID Root CA
146 + DigiCert Global Root CA
147 + DigiCert High Assurance EV Root CA
150 + Entrust Root Certification Authority
151 + Firmaprofesional Root CA
152 + GeoTrust Global CA 2
153 + GeoTrust Primary Certification Authority
154 + GeoTrust Universal CA
155 + GeoTrust Universal CA 2
156 + GlobalSign Root CA - R2
157 + Go Daddy Class 2 CA
158 + NetLock Business (Class B) Root
159 + NetLock Express (Class C) Root
160 + NetLock Notary (Class A) Root
161 + NetLock Qualified (Class QA) Root
166 + Starfield Class 2 CA
167 + StartCom Certification Authority
170 + SwissSign Gold CA - G2
171 + SwissSign Platinum CA - G2
172 + SwissSign Silver CA - G2
174 + thawte Primary Root CA
175 + TURKTRUST Certificate Services Provider Root 1
176 + TURKTRUST Certificate Services Provider Root 2
177 + VeriSign Class 3 Public Primary Certification Authority - G5
178 + Wells Fargo Root CA
179 + XRamp Global CA Root
180 * Removed CA certificates:
182 + Verisign Class 1 Public Primary OCSP Responder
183 + Verisign Class 2 Public Primary OCSP Responder
184 + Verisign Class 3 Public Primary OCSP Responder
185 + Verisign Secure Server OCSP Responder
187 -- Philipp Kern <pkern@debian.org> Mon, 07 Apr 2008 18:00:06 +0200
189 ca-certificates (20070303) unstable; urgency=low
191 * New CA certificates:
192 - debconf.org: DebConf
193 - cacert.org: add class3
195 -- Fumitoshi UKAI <ukai@debian.or.jp> Sat, 3 Mar 2007 21:21:50 -0800
197 ca-certificates (20040808) unstable; urgency=low
199 * New CA certificates:
200 - brasil.gov.gr: Autoridade Certificadora Raiz Brasileira
201 - signet.pl: Certification Center Signet (CC Signet)
202 - quovadis.bm: QuoVadis CA certificates
203 * Remove CA certificates:
204 - debian.org: revoked due to crack incident.
206 -- Fumitoshi UKAI <ukai@debian.or.jp> Sun, 8 Aug 2004 22:43:36 +0900