Closed Bug 1740807 Opened 3 years ago Closed 2 years ago

Remove Expiring Cybertrust Global Root and GlobalSign root certificates from NSS

Categories

(NSS :: CA Certificates Code, task, P1)

Product:
NSS
Component:
CA Certificates Code
Version:
3.74
Type:
task

Tracking

(Not tracked)

Status:
RESOLVED FIXED

People

(Reporter: kathleen.a.wilson, Assigned: jschanck)

References

Details

(Whiteboard: December 2021 Batch of Root Changes)

Attachments

(1 file)

Bug 1740807 - Remove Expiring Cybertrust Global Root and GlobalSign root certificates from NSS. r=KathleenWilson
48 bytes, text/x-phabricator-request
Details | Review

Please remove the following root certificates from NSS.

Subject: CN=Cybertrust Global Root; O=Cybertrust, Inc
Valid To: 12/15/2021
Certificate Serial Number: 0400000000010F85AA2D48
SHA-1 Fingerprint: 5F43E5B1BFF8788CAC1CC7CA4A9AC6222BCC34C6
SHA-256 Fingerprint: 960ADF0063E96356750C2965DD0A0867DA0B9CBD6E77714AEAFB2349AB393DA3
Mozilla Trust Bits: Websites
EV treatment disabled via Bug #1738809 in Firefox 96

Subject: CN=GlobalSign; OU=GlobalSign Root CA - R2; O=GlobalSign
Valid To: 12/15/2021
Certificate Serial Number: 0400000000010F8626E60D
SHA-1 Fingerprint: 75E0ABB6138512271C04F85FDDDE38E4B7242EFE
SHA-256 Fingerprint: CA42DD41745FD0B81EB902362CF9D8BF719DA1BD1B1EFC946F5B4C99F42C1B9E
Mozilla Trust Bits: Email;Websites
Email received from the CA: We have not used R2 for S/MIME at all. I assume that GlobalSign did before we acquired R2 in 2016 but any certs GlobalSign has issued should have expired by now.

Assignee: nobody → jschanck
Status: NEW → ASSIGNED

https://hg.mozilla.org/projects/nss/rev/27026e52b449a88131f91d5292c8b18c2eacca54

Severity: -- → N/A
Priority: -- → P1
Target Milestone: --- → 3.74
Status: ASSIGNED → RESOLVED
Closed: 2 years ago
Resolution: --- → FIXED
Regressions: 1746404
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: