openjdk team mailing list archive
-
openjdk team
-
Mailing list archive
-
Message #07184
[Bug 920758] [NEW] DigiNotar Root CA still present in ca-certificates-java
Public bug reported:
Description: Ubuntu 10.04.3 LTS
Release: 10.04
ca-certificates-java:
Installed: 20100406ubuntu1
Candidate: 20100406ubuntu1
The DigiNotar root CA should have been globally purged as part of bug
#837557. It appears to still be present in this package.
When running the following command:
keytool -v -list -alias diginotar_root_ca -keystore /usr/share/ca-certificates-java/cacerts
The following is returned:
Alias name: diginotar_root_ca
Creation date: Apr 11, 2010
Entry type: trustedCertEntry
Owner: EMAILADDRESS=info@xxxxxxxxxxxx, CN=DigiNotar Root CA, O=DigiNotar,
Issuer: EMAILADDRESS=info@xxxxxxxxxxxx, CN=DigiNotar Root CA, O=DigiNotar
Serial number: c76da9c910c4e2c9efe15d058933c4c
Valid from: Wed May 16 10:19:36 PDT 2007 until: Mon Mar 31 11:19:21 PDT
Certificate fingerprints:
MD5: 7A:79:54:4D:07:92:3B:5B:FF:41:F0:0E:C7:39:A2:98
SHA1: C0:60:ED:44:CB:D8:81:BD:0E:F8:6C:0B:A2:87:DD:CF:81:67:47:8C
Signature algorithm name: SHA1withRSA
Version: 3
** Affects: ca-certificates-java (Ubuntu)
Importance: Undecided
Status: New
** Description changed:
Description: Ubuntu 10.04.3 LTS
Release: 10.04
ca-certificates-java:
- Installed: 20100406ubuntu1
- Candidate: 20100406ubuntu1
+ Installed: 20100406ubuntu1
+ Candidate: 20100406ubuntu1
The DigiNotar root CA should have been globally purged as part of bug
#837557. It appears to still be present in this package.
When running the following command:
- keytool -v -list -alias diginotar_root_ca -keystore /usr/share/ca-certificates-java/cacerts
+ keytool -v -list -alias diginotar_root_ca -keystore /usr/share/ca-certificates-java/cacerts
The following is returned:
- Alias name: diginotar_root_ca
- Creation date: Apr 11, 2010
- Entry type: trustedCertEntry
-
- Owner: EMAILADDRESS=info@xxxxxxxxxxxx, CN=DigiNotar Root CA, O=DigiNotar, C=NL
- Issuer: EMAILADDRESS=info@xxxxxxxxxxxx, CN=DigiNotar Root CA, O=DigiNotar, C=NL
- Serial number: c76da9c910c4e2c9efe15d058933c4c
- Valid from: Wed May 16 10:19:36 PDT 2007 until: Mon Mar 31 11:19:21 PDT 2025
- Certificate fingerprints:
- MD5: 7A:79:54:4D:07:92:3B:5B:FF:41:F0:0E:C7:39:A2:98
- SHA1: C0:60:ED:44:CB:D8:81:BD:0E:F8:6C:0B:A2:87:DD:CF:81:67:47:8C
- Signature algorithm name: SHA1withRSA
- Version: 3
+ Alias name: diginotar_root_ca
+ Creation date: Apr 11, 2010
+ Entry type: trustedCertEntry
+
+ Owner: EMAILADDRESS=info@xxxxxxxxxxxx, CN=DigiNotar Root CA, O=DigiNotar,
+ Issuer: EMAILADDRESS=info@xxxxxxxxxxxx, CN=DigiNotar Root CA, O=DigiNotar
+ Serial number: c76da9c910c4e2c9efe15d058933c4c
+ Valid from: Wed May 16 10:19:36 PDT 2007 until: Mon Mar 31 11:19:21 PDT
+ Certificate fingerprints:
+ MD5: 7A:79:54:4D:07:92:3B:5B:FF:41:F0:0E:C7:39:A2:98
+ SHA1: C0:60:ED:44:CB:D8:81:BD:0E:F8:6C:0B:A2:87:DD:CF:81:67:47:8C
+ Signature algorithm name: SHA1withRSA
+ Version: 3
--
You received this bug notification because you are a member of OpenJDK,
which is subscribed to ca-certificates-java in Ubuntu.
https://bugs.launchpad.net/bugs/920758
Title:
DigiNotar Root CA still present in ca-certificates-java
Status in “ca-certificates-java” package in Ubuntu:
New
Bug description:
Description: Ubuntu 10.04.3 LTS
Release: 10.04
ca-certificates-java:
Installed: 20100406ubuntu1
Candidate: 20100406ubuntu1
The DigiNotar root CA should have been globally purged as part of bug
#837557. It appears to still be present in this package.
When running the following command:
keytool -v -list -alias diginotar_root_ca -keystore /usr/share/ca-certificates-java/cacerts
The following is returned:
Alias name: diginotar_root_ca
Creation date: Apr 11, 2010
Entry type: trustedCertEntry
Owner: EMAILADDRESS=info@xxxxxxxxxxxx, CN=DigiNotar Root CA, O=DigiNotar,
Issuer: EMAILADDRESS=info@xxxxxxxxxxxx, CN=DigiNotar Root CA, O=DigiNotar
Serial number: c76da9c910c4e2c9efe15d058933c4c
Valid from: Wed May 16 10:19:36 PDT 2007 until: Mon Mar 31 11:19:21 PDT
Certificate fingerprints:
MD5: 7A:79:54:4D:07:92:3B:5B:FF:41:F0:0E:C7:39:A2:98
SHA1: C0:60:ED:44:CB:D8:81:BD:0E:F8:6C:0B:A2:87:DD:CF:81:67:47:8C
Signature algorithm name: SHA1withRSA
Version: 3
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/ca-certificates-java/+bug/920758/+subscriptions
Follow ups
-
[Bug 920758] Re: DigiNotar Root CA still present in ca-certificates-java
From: martincloutier, 2012-03-28
-
[Bug 920758] Re: DigiNotar Root CA still present in ca-certificates-java
From: Launchpad Bug Tracker, 2012-03-27
-
[Bug 920758] Re: DigiNotar Root CA still present in ca-certificates-java
From: Launchpad Bug Tracker, 2012-03-27
-
[Bug 920758] Re: DigiNotar Root CA still present in ca-certificates-java
From: Launchpad Bug Tracker, 2012-03-27
-
[Bug 920758] Re: DigiNotar Root CA still present in ca-certificates-java
From: Launchpad Bug Tracker, 2012-03-27
-
[Bug 920758] Re: DigiNotar Root CA still present in ca-certificates-java
From: Launchpad Bug Tracker, 2012-03-22
-
[Bug 920758] Re: DigiNotar Root CA still present in ca-certificates-java
From: Launchpad Bug Tracker, 2012-03-22
-
[Bug 920758] Re: DigiNotar Root CA still present in ca-certificates-java
From: Marc Deslauriers, 2012-03-22
-
[Bug 920758] Re: DigiNotar Root CA still present in ca-certificates-java
From: Marc Deslauriers, 2012-03-19
-
[Bug 920758] Re: DigiNotar Root CA still present in ca-certificates-java
From: Marc Deslauriers, 2012-03-19
-
[Bug 920758] Re: DigiNotar Root CA still present in ca-certificates-java
From: Marc Deslauriers, 2012-03-16
-
[Bug 920758] Re: DigiNotar Root CA still present in ca-certificates-java
From: Etienne Goyer, 2012-03-13
-
[Bug 920758] [NEW] DigiNotar Root CA still present in ca-certificates-java
From: Brandon Gilmore, 2012-01-24
References
