JDK-8295894 : Remove SECOM certificate that is expiring in September 2023
  • Type: Bug
  • Component: security-libs
  • Sub-Component: java.security
  • Affected Version: 11,17,21,22
  • Priority: P3
  • Status: Closed
  • Resolution: Fixed
  • Submitted: 2022-10-25
  • Updated: 2024-12-05
  • Resolved: 2023-07-11
The Version table provides details related to the release that this issue/RFE will be addressed.

Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.

To download the current JDK release, click here.
JDK 11 JDK 17 JDK 21 JDK 22 JDK 7 JDK 8 Other
11.0.21-oracleFixed 17.0.9-oracleFixed 21Fixed 22 b07Fixed 7u401Fixed 8u391Fixed openjdk8u392Fixed
Sub Tasks
JDK-8311884 :  
Description
The following secom root certificate is expiring in September 2023 and needs action -

OU=Security Communication RootCA1, O=SECOM Trust.net, C=JP

EXPIRATION DATE: 9/29/2023
Comments
Fix Request (OpenJDK 8u critical): Please approve backporting this fix to OpenJDK 8u392. It removes a certificate which is going to expire in September 23 (i.e. if the fix goes in now well before the actual release is going to be live). Should be low risk. Tests pass. Also a pre-requisite for clean application of JDK-8314960.
06-09-2023

A pull request was submitted for review. URL: https://git.openjdk.org/jdk8u/pull/48 Date: 2023-09-06 09:32:37 +0000
06-09-2023

A pull request was submitted for review. URL: https://git.openjdk.org/jdk8u-dev/pull/363 Date: 2023-09-05 09:34:23 +0000
05-09-2023

Fix request [11u] I backport this for parity with 11.0.21-oracle. One of the required updates of meta information. I had to resolve and adapt. I backported from 17, but it made no difference in the end. Test passes. SAP nightly testing passed.
21-07-2023

A pull request was submitted for review. URL: https://git.openjdk.org/jdk11u-dev/pull/2052 Date: 2023-07-20 14:55:48 +0000
20-07-2023

Fix request [17u] I backport this for parity with 17.0.9-oracle. One of the required updates of meta information. I had to resolve and adapt. SAP nighlyt testing passed. Test passes.
18-07-2023

A pull request was submitted for review. URL: https://git.openjdk.org/jdk17u-dev/pull/1589 Date: 2023-07-17 09:58:20 +0000
17-07-2023

A pull request was submitted for review. URL: https://git.openjdk.org/jdk21/pull/114 Date: 2023-07-12 17:52:47 +0000
12-07-2023

Changeset: fd7fddb6 Author: Rajan Halade <rhalade@openjdk.org> Date: 2023-07-11 23:53:40 +0000 URL: https://git.openjdk.org/jdk/commit/fd7fddb6ed24e0ae4b5e18fb27fd80230941dc0b
11-07-2023

A pull request was submitted for review. URL: https://git.openjdk.org/jdk/pull/14838 Date: 2023-07-11 20:42:14 +0000
11-07-2023