lp://staging/ubuntu/lucid-proposed/ca-certificates
- Get this branch:
- bzr branch lp://staging/ubuntu/lucid-proposed/ca-certificates
Branch merges
Related source package recipes
Related bugs
| Bug #1014640: 12.04/openssl refusing some verisign certified sites | Unknown | Confirmed |
|
Related blueprints
Branch information
Recent revisions
- 13. By Marc Deslauriers
-
* Update ca-certificates database to 20130906 (LP: #1257265, LP: #1271357):
- backport changes from the Ubuntu 14.04 20130906ubuntu1 package
- No longer ship cacert.org certificates (LP: #1258286)
- No longer ship obsolete debconf.org certificates
- No longer ship expired brasil.gov.br certificates
- No longer ship expired signet.pl certificates
- No longer ship gouv.fr certificates, now part of mozilla bundle
- No longer ship telesec.de certificates, now part of mozilla bundle
- mozilla/certdata2pem. py: Work around openssl issue by shipping both
versions of the same signed roots. Previously, the script would
simply overwrite the first one found in the certdata.txt with the
later one since they both have the same CKA_LABEL, resulting in
identical filenames. (LP: #1014640, LP: #1031333) - 12. By Micah Gersten
-
* SECURITY UPDATE: Blacklist "DigiNotar Root CA" due to fraudulent
certificate issuance (LP: #837557)
- update mozilla/blacklist. txt - 8. By Philipp Kern
-
* New cacert.org.pem joining both CACert Class 1 and Class 3 certificates.
This file can be used for proper certificate chaining if CACert
server certificates are used. The old class3.pem and root.pem
certificates are deprecated. This new file could safely serve as
a replacement for both. (Closes: #494343)
* This also reintroduces the old name for the CACert certificate,
thus closing a long-standing bug about its rename to root.crt.
(Closes: #413766) - 7. By Matthias Klose
-
* Merge with Debian; remaining changes:
- debian/templates: Do not mark the choices as translatable. - 6. By James Westby
-
Prevent the debconf question being forced twice for users we
suspect to be affected. Also clean up the debconf value we
use to do this in the postinst as it will not be needed post-hardy. - 5. By James Westby
-
* Improve on the last fix by trying to fix up the problem for
those that were affected. (LP: #153625)
- If upgrading from a broken version and the file is empty,
then
- if the question was never seen then act like a default
install
- if the question was seen and we are in pt_BR locale then
ask the question again defaulting to selected for all
certificates.
- else do nothing.
- This covers the common cases well, but may require people
who changed their locales to either answer a question they
already answered, or to run dpkg-reconfigure manually.
- All of this code should be dropped after hardy, as all upgrades
must go through hardy, and everyone will have a fixed version
then. - 4. By Steve Langasek
-
[ James Westby ]
* Fix installation on pt_BR locales. This was caused by the .templates
choices strings being marked for translation, and then a translator
changing the substitution variable name. Thanks to Andreas Hasenack
for spotting the problem, and Daniel Hahler for the fix. (LP: #153625)
When merging this package check if the Debian upload fixed debian
bug 472507 as that is where the issue is reported.[ Steve Langasek ]
* Modify Maintainer value to match the DebianMaintainerField
specification.
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp://staging/ubuntu/trusty/ca-certificates
