Bug 1472933 - RHEL 7: Update ca-certificates to remove code signing trust from all CAs (upstream decision)
RHEL 7: Update ca-certificates to remove code signing trust from all CAs (ups...
Product: Red Hat Enterprise Linux 7
Classification: Red Hat
Component: ca-certificates (Show other bugs)
Unspecified Unspecified
unspecified Severity unspecified
: rc
: ---
Assigned To: Kai Engert (:kaie)
Hubert Kario
Mirek Jahoda
Depends On:
  Show dependency treegraph
Reported: 2017-07-19 11:50 EDT by Kai Engert (:kaie)
Modified: 2018-04-10 09:56 EDT (History)
2 users (show)

See Also:
Fixed In Version: ca-certificates-2017.2.16-71.el7
Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of:
Last Closed: 2018-04-10 09:56:26 EDT
Type: Bug
Regression: ---
Mount Type: ---
Documentation: ---
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)

External Trackers
Tracker ID Priority Status Summary Last Updated
Red Hat Product Errata RHEA-2018:0804 None None None 2018-04-10 09:56 EDT

  None (edit)
Description Kai Engert (:kaie) 2017-07-19 11:50:51 EDT
Mozilla has stopped supporting code signing trust, and the next update will remove all the trust bits related to code signing.

(Only the TLS/server trust and email security bits will remain.)

We should make this change in the next y-stream release.
Comment 8 errata-xmlrpc 2018-04-10 09:56:26 EDT
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.


Note You need to log in before you can comment on or make changes to this bug.