JDK-8223976 : Release Note: Removal of Two Comodo Root CA Certificates
  • Type: Sub-task
  • Component: security-libs
  • Sub-Component: java.security
  • Affected Version: 7u231,8u221,11.0.4-oracle,12.0.2,13
  • Priority: P3
  • Status: Closed
  • Resolution: Delivered
  • Submitted: 2019-05-15
  • Updated: 2019-09-06
  • Resolved: 2019-07-23
The Version table provides details related to the release that this issue/RFE will be addressed.

Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.

To download the current JDK release, click here.
JDK 11 JDK 7 JDK 8
11.0.4-oracleResolved 7u231Resolved 8u221Resolved
Description
Two Comodo root CA certificates have expired and were removed from the `cacerts` keystore: 
+ alias name "utnuserfirstclientauthemailca [jdk]"

  Distinguished Name: CN=UTN-USERFirst-Client Authentication and Email, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, ST=UT, C=US

+ alias name "utnuserfirsthardwareca [jdk]"

  Distinguished Name: CN=UTN-USERFirst-Hardware, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, ST=UT, C=US