File _patchinfo of Package patchinfo.27275
<patchinfo incident="27275">
<issue tracker="bnc" id="1206212">VUL-0: CVE-2022-23491: python-certifi,ca-certificates-mozilla: Dropping TrustCor root certificates</issue>
<issue tracker="bnc" id="1206622">VUL-0: ca-certificates-mozilla: Update to 2.60</issue>
<packager>msmeissn</packager>
<rating>important</rating>
<category>security</category>
<summary>Security update for ca-certificates-mozilla</summary>
<description>This update for ca-certificates-mozilla fixes the following issues:
- Updated to 2.60 state of Mozilla SSL root CAs (bsc#1206622)
Removed CAs:
- Global Chambersign Root
- EC-ACC
- Network Solutions Certificate Authority
- Staat der Nederlanden EV Root CA
- SwissSign Platinum CA - G2
Added CAs:
- DIGITALSIGN GLOBAL ROOT ECDSA CA
- DIGITALSIGN GLOBAL ROOT RSA CA
- Security Communication ECC RootCA1
- Security Communication RootCA3
Changed trust:
- TrustCor certificates only trusted up to Nov 30 (bsc#1206212)
- Removed CAs (bsc#1206212) as most code does not handle "valid before nov 30 2022"
and it is not clear how many certs were issued for SSL middleware by TrustCor:
- TrustCor RootCert CA-1
- TrustCor RootCert CA-2
- TrustCor ECA-1
</description>
</patchinfo>