JDK-2185761 : Add new VeriSign root CA certificates to JRE and remove some old/unused ones
  • Type: Backport
  • Backport of: JDK-6904162
  • Component: security-libs
  • Sub-Component: java.security
  • Priority: P3
  • Status: Resolved
  • Resolution: Fixed
  • Submitted: 2009-12-03
  • Updated: 2010-05-08
  • Resolved: 2009-12-22
The Version table provides details related to the release that this issue/RFE will be addressed.

Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.

To download the current JDK release, click here.
Other JDK 6
1.4.2_26 b01Fixed 6u19Fixed
Comments
EVALUATION For JRE 1.4.2, the following new aliases were added to the cacerts file: verisignclass3g5ca thawteprimaryrootca geotrustprimaryca The following aliases were removed because their root certs are not applicable or were never put into production: thawtepersonalbasicca thawtepersonalpremiumca verisignclass2ca The following aliases were replaced with certificates signed with stronger (SHA1withRSA instead of MD*withRSA) algorithms: thawtepersonalfreemailca thawtepremiumserverca thawteserverca verisignclass1ca verisignclass3ca *** (#1 of 1): 2009-12-02 15:18:22 EST ###@###.### *** Last Edit: 2009-12-03 11:00:17 EST ###@###.###
07-12-2009