Recommended update for openssl-certs

SUSE Recommended Update: Recommended update for openssl-certs
Announcement ID: SUSE-RU-2012:1382-1
Rating: moderate
References: #783509
Affected Products:
  • SUSE Linux Enterprise Server 11 SP2 for VMware
  • SUSE Linux Enterprise Server 11 SP2
  • SUSE Linux Enterprise Server 10 SP4
  • SUSE Linux Enterprise Desktop 11 SP2
  • SUSE Linux Enterprise Desktop 10 SP4

  • An update that has one recommended fix can now be installed. It includes one version update.

    Description:


    The openssl-certs certificate store was updated with the
    Mozilla certdata.txt update to 1.85.

    The following changes were done:

    * new "Actalis Authentication Root CA"
    * new "Trustis FPS Root CA"
    * new "StartCom Certification Authority"
    * new "StartCom Certification Authority G2"
    * new "Buypass Class 2 Root CA"
    * new "Buypass Class 3 Root CA"
    * updated: "Sonera Class2 CA": remove code-signing
    * updated: "thawte Primary Root CA": added code-signing
    * updated: "Trustis_FPS_Root_CA.pem": added code-signing
    * updated: VeriSign Class 3 Public Primary
    Certification Authority - G5": added code-signing,
    email-protection

    Mozilla tracker bug:
    https://bugzilla.mozilla.org/show_bug.cgi?id=757197

    Patch Instructions:

    To install this SUSE Recommended Update use YaST online_update.
    Alternatively you can run the command listed for your product:

    • SUSE Linux Enterprise Server 11 SP2 for VMware:
      zypper in -t patch slessp2-openssl-certs-6941
    • SUSE Linux Enterprise Server 11 SP2:
      zypper in -t patch slessp2-openssl-certs-6941
    • SUSE Linux Enterprise Desktop 11 SP2:
      zypper in -t patch sledsp2-openssl-certs-6941

    To bring your system up-to-date, use "zypper patch".

    Package List:

    • SUSE Linux Enterprise Server 11 SP2 for VMware (noarch) [New Version: 1.85]:
    • openssl-certs-1.85-0.6.1
    • SUSE Linux Enterprise Server 11 SP2 (noarch) [New Version: 1.85]:
    • openssl-certs-1.85-0.6.1
    • SUSE Linux Enterprise Server 10 SP4 (noarch) [New Version: 1.85]:
    • openssl-certs-1.85-0.17.1
    • SUSE Linux Enterprise Desktop 11 SP2 (noarch) [New Version: 1.85]:
    • openssl-certs-1.85-0.6.1
    • SUSE Linux Enterprise Desktop 10 SP4 (noarch) [New Version: 1.85]:
    • openssl-certs-1.85-0.17.1

    References:

    • https://bugzilla.novell.com/783509
    • http://download.suse.com/patch/finder/?keywords=7ac4d071eacd53eeedc8ae8bd3615962
    • http://download.suse.com/patch/finder/?keywords=a22d8e7f8c93fbb0ea8bbc4d294ff792