- Issued:
- 2020-06-23
- Updated:
- 2020-06-23
RHBA-2020:2666 - Bug Fix Advisory
Synopsis
ca-certificates bug fix and enhancement update
Type/Severity
Bug Fix Advisory
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory.
Topic
An update for ca-certificates is now available for Red Hat Enterprise Linux
7.
Description
The ca-certificates package contains a set of Certificate Authority (CA)
certificates chosen by the Mozilla Foundation for use with the Internet
Public Key Infrastructure (PKI).
Bug Fix(es) and Enhancement(s):
- AddTrust External Root CA certificate expiration causes cert validation
issue (BZ#1845707)
- Mismatches in %ghost file modes (BZ#1845849)
- Update ca-certificates package in RHEL 7.8z to CA trust list version
(2020) 2.53 from Firefox 78 (BZ#1845850)
Solution
Before applying this update, make sure all previously released errata
relevant to your system have been applied.
For details on how to apply this update, refer to:
Affected Products
- Red Hat Enterprise Linux Server 7 x86_64
- Red Hat Enterprise Linux Server - Extended Life Cycle Support 7 x86_64
- Red Hat Enterprise Linux Workstation 7 x86_64
- Red Hat Enterprise Linux Desktop 7 x86_64
- Red Hat Enterprise Linux for IBM z Systems 7 s390x
- Red Hat Enterprise Linux for Power, big endian 7 ppc64
- Red Hat Enterprise Linux for Scientific Computing 7 x86_64
- Red Hat Enterprise Linux for Power, little endian 7 ppc64le
- Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 7 s390x
- Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, big endian 7 ppc64
- Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, little endian 7 ppc64le
Fixes
- BZ - 1845707 - AddTrust External Root CA certificate expiration causes cert validation issue [rhel-7.8.z]
- BZ - 1845849 - Mismatches in %ghost file modes [rhel-7.8.z]
- BZ - 1845850 - Update ca-certificates package in RHEL 7.8z to CA trust list version (2020) 2.53 from Firefox 78 [rhel-7.8.z]
CVEs
(none)
References
(none)
Note:
More recent versions of these packages may be available.
Click a package name for more details.
Red Hat Enterprise Linux Server 7
| SRPM | |
|---|---|
| ca-certificates-2020.2.41-70.0.el7_8.src.rpm | SHA-256: aca4a0a62849da6a78403b886b91aa3fbc4787af22ac71b0aae2b1b64bf96a37 |
| x86_64 | |
| ca-certificates-2020.2.41-70.0.el7_8.noarch.rpm | SHA-256: 4d4a191087d74621903e3d7a00297da398737c7b66735ef24d45facad0a7dd11 |
Red Hat Enterprise Linux Server - Extended Life Cycle Support 7
| SRPM | |
|---|---|
| ca-certificates-2020.2.41-70.0.el7_8.src.rpm | SHA-256: aca4a0a62849da6a78403b886b91aa3fbc4787af22ac71b0aae2b1b64bf96a37 |
| x86_64 | |
| ca-certificates-2020.2.41-70.0.el7_8.noarch.rpm | SHA-256: 4d4a191087d74621903e3d7a00297da398737c7b66735ef24d45facad0a7dd11 |
Red Hat Enterprise Linux Workstation 7
| SRPM | |
|---|---|
| ca-certificates-2020.2.41-70.0.el7_8.src.rpm | SHA-256: aca4a0a62849da6a78403b886b91aa3fbc4787af22ac71b0aae2b1b64bf96a37 |
| x86_64 | |
| ca-certificates-2020.2.41-70.0.el7_8.noarch.rpm | SHA-256: 4d4a191087d74621903e3d7a00297da398737c7b66735ef24d45facad0a7dd11 |
Red Hat Enterprise Linux Desktop 7
| SRPM | |
|---|---|
| ca-certificates-2020.2.41-70.0.el7_8.src.rpm | SHA-256: aca4a0a62849da6a78403b886b91aa3fbc4787af22ac71b0aae2b1b64bf96a37 |
| x86_64 | |
| ca-certificates-2020.2.41-70.0.el7_8.noarch.rpm | SHA-256: 4d4a191087d74621903e3d7a00297da398737c7b66735ef24d45facad0a7dd11 |
Red Hat Enterprise Linux for IBM z Systems 7
| SRPM | |
|---|---|
| ca-certificates-2020.2.41-70.0.el7_8.src.rpm | SHA-256: aca4a0a62849da6a78403b886b91aa3fbc4787af22ac71b0aae2b1b64bf96a37 |
| s390x | |
| ca-certificates-2020.2.41-70.0.el7_8.noarch.rpm | SHA-256: 4d4a191087d74621903e3d7a00297da398737c7b66735ef24d45facad0a7dd11 |
Red Hat Enterprise Linux for Power, big endian 7
| SRPM | |
|---|---|
| ca-certificates-2020.2.41-70.0.el7_8.src.rpm | SHA-256: aca4a0a62849da6a78403b886b91aa3fbc4787af22ac71b0aae2b1b64bf96a37 |
| ppc64 | |
| ca-certificates-2020.2.41-70.0.el7_8.noarch.rpm | SHA-256: 4d4a191087d74621903e3d7a00297da398737c7b66735ef24d45facad0a7dd11 |
Red Hat Enterprise Linux for Scientific Computing 7
| SRPM | |
|---|---|
| ca-certificates-2020.2.41-70.0.el7_8.src.rpm | SHA-256: aca4a0a62849da6a78403b886b91aa3fbc4787af22ac71b0aae2b1b64bf96a37 |
| x86_64 | |
| ca-certificates-2020.2.41-70.0.el7_8.noarch.rpm | SHA-256: 4d4a191087d74621903e3d7a00297da398737c7b66735ef24d45facad0a7dd11 |
Red Hat Enterprise Linux for Power, little endian 7
| SRPM | |
|---|---|
| ca-certificates-2020.2.41-70.0.el7_8.src.rpm | SHA-256: aca4a0a62849da6a78403b886b91aa3fbc4787af22ac71b0aae2b1b64bf96a37 |
| ppc64le | |
| ca-certificates-2020.2.41-70.0.el7_8.noarch.rpm | SHA-256: 4d4a191087d74621903e3d7a00297da398737c7b66735ef24d45facad0a7dd11 |
Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 7
| SRPM | |
|---|---|
| ca-certificates-2020.2.41-70.0.el7_8.src.rpm | SHA-256: aca4a0a62849da6a78403b886b91aa3fbc4787af22ac71b0aae2b1b64bf96a37 |
| s390x | |
| ca-certificates-2020.2.41-70.0.el7_8.noarch.rpm | SHA-256: 4d4a191087d74621903e3d7a00297da398737c7b66735ef24d45facad0a7dd11 |
Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, big endian 7
| SRPM | |
|---|---|
| ca-certificates-2020.2.41-70.0.el7_8.src.rpm | SHA-256: aca4a0a62849da6a78403b886b91aa3fbc4787af22ac71b0aae2b1b64bf96a37 |
| ppc64 | |
| ca-certificates-2020.2.41-70.0.el7_8.noarch.rpm | SHA-256: 4d4a191087d74621903e3d7a00297da398737c7b66735ef24d45facad0a7dd11 |
Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, little endian 7
| SRPM | |
|---|---|
| ca-certificates-2020.2.41-70.0.el7_8.src.rpm | SHA-256: aca4a0a62849da6a78403b886b91aa3fbc4787af22ac71b0aae2b1b64bf96a37 |
| ppc64le | |
| ca-certificates-2020.2.41-70.0.el7_8.noarch.rpm | SHA-256: 4d4a191087d74621903e3d7a00297da398737c7b66735ef24d45facad0a7dd11 |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.
