I received the user report and did a quick check using a fresh installation of 14.04. I disabled updates at install because I wanted to test before and after updating ca-certificates. I then only updated ca- certificates which showed the problem (curl https://einstein.phys.uwm.edu was not working). I now updated all other packages and it is working again thanks to the openssl update.
Sorry for the noise, I had little time to test and wanted to prevent a further spreading of this issue. -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to ca-certificates in Ubuntu. https://bugs.launchpad.net/bugs/1551615 Title: Alternative chain verification failure after 1024b root CAs removal Status in ca-certificates package in Ubuntu: Incomplete Status in ca-certificates package in Debian: New Bug description: There is now the same problem on Ubuntu 14.04 as there is currently on Debian 7. See: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=812708 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=812488 Gist: Openssl 1.0.1f can not verify certificates that have an alternative chain without both root certificates present. The update 20160104ubuntu0.14.04.1 removes 1024bit certificates that are used within those chains. Please don't push this update to vivid too! To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/ca-certificates/+bug/1551615/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : [email protected] Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
