Version 20210119 in hirsute-proposed fixes this issue. The Symantec certs were never blacklisted in focal and earlier, so they aren't affected.
This issue does affect Groovy, but even if we removed the blacklist from the ca-certificates package, the certs will still be blacklisted because of debian bug #743339. We need to investigate how to remove the blacklist in a maintainer script on package upgrade. ** Bug watch added: Debian Bug tracker #962596 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=962596 ** Also affects: ca-certificates (Debian) via https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=962596 Importance: Unknown Status: Unknown ** Also affects: ca-certificates (Ubuntu Hirsute) Importance: Undecided Status: Confirmed ** Also affects: ca-certificates (Ubuntu Groovy) Importance: Undecided Status: New ** Changed in: ca-certificates (Ubuntu Groovy) Status: New => Confirmed ** Changed in: ca-certificates (Ubuntu Hirsute) Status: Confirmed => Fix Committed ** Changed in: ca-certificates (Ubuntu Groovy) Assignee: (unassigned) => Marc Deslauriers (mdeslaur) ** Changed in: ca-certificates (Ubuntu Groovy) Importance: Undecided => High -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1913951 Title: ca-certificates: Symantec CA blacklisted for non-TLS uses To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/ca-certificates/+bug/1913951/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
