X-Recipient: archive-cygwin AT delorie DOT com X-Original-To: cygwin AT cygwin DOT com Delivered-To: cygwin AT cygwin DOT com DMARC-Filter: OpenDMARC Filter v1.4.1 sourceware.org 917C8385802D Authentication-Results: sourceware.org; dmarc=none (p=none dis=none) header.from=nexgo.de Authentication-Results: sourceware.org; spf=pass smtp.mailfrom=nexgo.de DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=nexgo.de; s=vfde-smtpout-mb-15sep; t=1633457734; bh=KJXeysOI2FebaZ1CCbh0B2zTWn/pJtIPdH8XkTQvn6o=; h=From:To:Subject:Date; b=fLgDD2budLRCGRRisYZ6ZL4XDZzRucPupKb3Sv+ZiwYmjuPZLp8T9vron31s49kNA Ye/mIK1t7qAor8J2Ix35nneND7dvjX1bhUWgd5j9nQV1SG8NMGaDqNl+qXIJ0J5UkY 0EAsijMa0PjU8awX80VhC8gwas4d43LrxUD+Fcbg= From: Achim Gratz To: cygwin AT cygwin DOT com Subject: [ANNOUNCEMENT] Updated: ca-certificates-2.50-3 Date: Tue, 05 Oct 2021 20:15:15 +0200 Message-Id: User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/27.2 (gnu/linux) MIME-Version: 1.0 X-purgate-type: clean X-purgate-Ad: Categorized by eleven eXpurgate (R) http://www.eleven.de X-purgate: This mail is considered clean (visit http://www.eleven.de for further information) X-purgate: clean X-purgate-size: 1696 X-purgate-ID: 155817::1633457727-000006E4-20623A95/0/0 X-Spam-Status: No, score=-3030.1 required=5.0 tests=BAYES_00, DKIM_SIGNED, DKIM_VALID, DKIM_VALID_AU, DKIM_VALID_EF, KAM_NUMSUBJECT, RCVD_IN_BARRACUDACENTRAL, RCVD_IN_DNSWL_LOW, RCVD_IN_MSPIKE_H2, SPF_HELO_NONE, SPF_PASS, TXREP autolearn=no autolearn_force=no version=3.4.4 X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on server2.sourceware.org X-BeenThere: cygwin-announce AT cygwin DOT com X-Mailman-Version: 2.1.29 X-Mailer: Perl5 Mail::Internet v2.20 X-BeenThere: cygwin AT cygwin DOT com List-Id: General Cygwin discussions and problem reports List-Archive: List-Post: List-Help: List-Subscribe: , Reply-To: cygwin AT cygwin DOT com Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Sender: "Cygwin" The following packages have been uploaded to the Cygwin distribution: * ca-certificates-2.50-3 * ca-certificates-letsencrypt-2.50-3 Mozilla's CA root certificates for use with OpenSSL, NSS, GnuTLS, and other software that handles certificate verification. This update adds the ca-certificates-letsencrypt package, which when installed will make the ISRG R3 intermediate CA a trust anchor. This will allow to successfully verify certificates using the Letsencrypt legacy cert chain in certain applications. Install this package when you currently have trouble accessing sites (due to validation complaining about an expired certificate) that had no problems until about September 30 or October 1 2021 depending on your timezone. It may be necessary to also remove trust for the already expired DST X3 root CA (which is provided in /usr/share/pki/letsencrypt together with the R3 intermediate and ISRG X1 and X2 root CA certificates). Please report to the main Cygwin mailing list if you know of an example that needs this blocklisting (with details for reproducing the validation or application error). -- *** CYGWIN-ANNOUNCE UNSUBSCRIBE INFO *** If you want to unsubscribe from the cygwin-announce mailing list, look at the "List-Unsubscribe: " tag in the email header of this message. Send email to the address specified there. It will be in the format: cygwin-announce-unsubscribe-you=yourdomain DOT com AT cygwin DOT com If you need more information on unsubscribing, start reading here: http://sourceware.org/lists.html#unsubscribe-simple Please read *all* of the information on unsubscribing that is available starting at this URL. -- Problem reports: https://cygwin.com/problems.html FAQ: https://cygwin.com/faq/ Documentation: https://cygwin.com/docs.html Unsubscribe info: https://cygwin.com/ml/#unsubscribe-simple