Package: ca-certificates Version: 20250419 Severity: wishlist Dear Maintainer,
to fix #721976 the ca-certificates package has dropped email certificates. As a result signature verification of signed mails using S/MIME fails in some cases, e. g. for certificates derived from the "HARICA Client RSA Root CA 2021" root certificate. This e. g. affects checks like openssl smime -verify -in signedmail.eml > /dev/null but also more common use cases like the signature verification in the SOGo web mail client [0] are affected. To avoid re-introducing the issue giving rise to #721976 I suggest to introduce a new separate binary package for email certificates (maybe something along the lines of [1]). Best regards Peter [0] https://tracker.debian.org/pkg/sogo [1] https://bugs.debian.org/721976#35
