diff options
| author | Guilhem Moulin <guilhem@debian.org> | 2024-06-13 19:20:05 +0200 |
|---|---|---|
| committer | Guilhem Moulin <guilhem@debian.org> | 2024-06-13 19:20:05 +0200 |
| commit | f6bfd9b91629bd498301b34de8ea2b28d33ceb7d (patch) | |
| tree | 761ecf2bf99cff451128b4ff3d49383752434ec2 | |
| parent | edb498097d7fd4d52c4f49c164776f7b15e59703 (diff) | |
Update changelog for 0.8.0-2+deb11u2 release
| -rw-r--r-- | debian/changelog | 13 |
1 files changed, 13 insertions, 0 deletions
diff --git a/debian/changelog b/debian/changelog index 9fbaada..382a8ed 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,16 @@ +lacme (0.8.0-2+deb11u2) bullseye; urgency=medium + + * Backport upstream patches to fix fix post-issuance validation logic. + We avoid pining the intermediate certificates in the bundle and instead + validate the leaf certificate with intermediates supplied during issuance + as untrusted (used for chain building only). Only the root certificates + are used as trust anchor. Not pining intermediate certificates is in line + with Let's Encrypt's latest recommendations. + Closes: #1072847 + * Adjust test suite against current Let's Encrypt staging environment. + + -- Guilhem Moulin <guilhem@debian.org> Thu, 13 Jun 2024 19:19:07 +0200 + lacme (0.8.0-2+deb11u1) bullseye; urgency=medium * client: Handle "ready" → "processing" → "valid" status change during |