subject:"Bug#995432\: Please blacklist expired DST Root CA X3 certificate"

Bug#995432: Please blacklist expired DST Root CA X3 certificate

2021-10-04 Thread Julien Cristau

On Mon, Oct 04, 2021 at 09:45:10AM +0200, Tomas Barton wrote: > Latest ruby package 2.3.3 in stretch includes OpenSSL 1.0.2u which can't > handle > expired CA. > > ruby -v -ropenssl -rfiddle -e 'puts Fiddle::Function.new(Fiddle.dlopen(nil) > ["SSLeay_version"], [Fiddle::TYPE_INT], Fiddle::TYPE_VO

Bug#995432: Please blacklist expired DST Root CA X3 certificate

2021-10-04 Thread Tomas Barton

Latest ruby package 2.3.3 in stretch includes OpenSSL 1.0.2u which can't handle expired CA. ruby -v -ropenssl -rfiddle -e 'puts Fiddle::Function.new(Fiddle.dlopen(nil)["SSLeay_version"], [Fiddle::TYPE_INT], Fiddle::TYPE_VOIDP).call(0)' ruby 2.3.3p222 (2016-11-21) [x86_64-linux-gnu] OpenSSL 1.0.2u

Bug#995432: Please blacklist expired DST Root CA X3 certificate

2021-10-04 Thread Sjoerd Simons

Hey, On Fri, 2021-10-01 at 14:12 +0200, Julien Cristau wrote: > On Fri, Oct 01, 2021 at 10:14:27AM +0200, Sjoerd Simons wrote: > > Package: ca-certificates > > Version: 20210119 > > Severity: normal > > > > This is a similar situation as #961907. The DST Root CA X3 > > certificate in > > ca-cert

Bug#995432: Please blacklist expired DST Root CA X3 certificate

2021-10-01 Thread Brandon Black

On Fri, 1 Oct 2021 14:12:24 +0200 Julien Cristau wrote: > Which implementations are affected? I know of openssl 1.0.2, which is > not in any supported Debian release. Are recent versions of gnutls > affected by this bug? The CA store can be (and commonly is) used by other software on the hosts

Bug#995432: Please blacklist expired DST Root CA X3 certificate

2021-10-01 Thread Julien Cristau

On Fri, Oct 01, 2021 at 10:14:27AM +0200, Sjoerd Simons wrote: > Package: ca-certificates > Version: 20210119 > Severity: normal > > This is a similar situation as #961907. The DST Root CA X3 certificate in > ca-certificates has expired, which is a signer for "ISRG Root X1", which in > turn i used

Bug#995432: Please blacklist expired DST Root CA X3 certificate

2021-10-01 Thread Sjoerd Simons

Package: ca-certificates Version: 20210119 Severity: normal This is a similar situation as #961907. The DST Root CA X3 certificate in ca-certificates has expired, which is a signer for "ISRG Root X1", which in turn i used by Letsencrypt. This causes some (older?) SSL implementation to mark letsenc

Bug#995432: Please blacklist expired DST Root CA X3 certificate

Bug#995432: Please blacklist expired DST Root CA X3 certificate

Bug#995432: Please blacklist expired DST Root CA X3 certificate

Bug#995432: Please blacklist expired DST Root CA X3 certificate

Bug#995432: Please blacklist expired DST Root CA X3 certificate

Bug#995432: Please blacklist expired DST Root CA X3 certificate

6 matches

Site Navigation

Mail list logo

Footer information