USN-4377-1

See a problem?
Please try reporting it to the source first.
Source
https://ubuntu.com/security/notices/USN-4377-1
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-4377-1.json
JSON Data
https://api.osv.dev/v1/vulns/USN-4377-1
Published
2020-06-01T14:23:14Z
Modified
2026-02-10T04:41:50Z
Summary
ca-certificates update
Details

The ca-certificates package contained an expired CA certificate that caused connectivity issues. This update removes the "AddTrust External Root" CA.

In addition, on Ubuntu 16.04 LTS and Ubuntu 18.04 LTS, this update refreshes the included certificates to those contained in the 20190110 package.

References

Affected packages

Ubuntu:16.04:LTS / ca-certificates

Package

Name
ca-certificates
Purl
pkg:deb/ubuntu/ca-certificates@20190110~16.04.1?arch=source&distro=xenial

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
20190110~16.04.1

Affected versions

Other
20150426ubuntu1
20160104ubuntu1
20170717~16.*
20170717~16.04.1
20170717~16.04.2

Ecosystem specific 

{
    "binaries": [
        {
            "binary_version": "20190110~16.04.1",
            "binary_name": "ca-certificates"
        }
    ],
    "availability": "No subscription required"
}

Database specific

cves_map 
{
    "ecosystem": "Ubuntu:16.04:LTS",
    "cves": []
}
source 
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-4377-1.json"

Ubuntu:18.04:LTS / ca-certificates

Package

Name
ca-certificates
Purl
pkg:deb/ubuntu/ca-certificates@20190110~18.04.1?arch=source&distro=bionic

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
20190110~18.04.1

Affected versions

Other
20170717
20180409

Ecosystem specific 

{
    "binaries": [
        {
            "binary_version": "20190110~18.04.1",
            "binary_name": "ca-certificates"
        }
    ],
    "availability": "No subscription required"
}

Database specific

cves_map 
{
    "ecosystem": "Ubuntu:18.04:LTS",
    "cves": []
}
source 
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-4377-1.json"

Ubuntu:20.04:LTS / ca-certificates

Package

Name
ca-certificates
Purl
pkg:deb/ubuntu/ca-certificates@20190110ubuntu1.1?arch=source&distro=focal

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
20190110ubuntu1.1

Affected versions

Other
20190110
20190110ubuntu1

Ecosystem specific 

{
    "binaries": [
        {
            "binary_version": "20190110ubuntu1.1",
            "binary_name": "ca-certificates"
        }
    ],
    "availability": "No subscription required"
}

Database specific

cves_map 
{
    "ecosystem": "Ubuntu:20.04:LTS",
    "cves": []
}
source 
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-4377-1.json"