← Netlock cases
Bugzilla #1462423 Certificate Misissuance

NetLock: CN not in SAN

RESOLVED FIXED Netlock
AI Summary

NetLock issued seven pre-certificates where the Common Name (CN) did not match the Subject Alternative Name (SAN). This misissuance was reported by Andrew Ayer, leading to an investigation by NetLock. The CA acknowledged the issue, halted certificate issuance, and identified the root cause as a configuration error. They subsequently revoked the affected certificates and implemented new validation protocols to prevent future occurrences. An incident report was requested but initially not provided, leading to further follow-up from Mozilla representatives.

Model: gpt-4o-mini Generated: 2026-06-13 17:48 UTC Confidence: 0.95
Chronology
  1. Issue reported by Andrew Ayer.
  2. Affected certificates revoked.
  3. NetLock submitted an incident report.
  4. Linting implementation completed.
Participants
Andrew Ayer Varga Viktor Wayne Thayer Ryan Sleevi
External References
Original Bugzilla Case crt.sh crt.sh crt.sh crt.sh crt.sh crt.sh crt.sh
Similar Local Cases
#1676367 RESOLVED Certificate Misissuance Opened 2020-11-10 · Closed 2023-02-22 · 68% similar
NetLock: Issuance of >398-day precertificates after 2020-09-01
AI Summary CA Owner
#1391056 RESOLVED Certificate Misissuance Opened 2017-08-16 · Closed 2023-02-22 · 68% similar
NetLock: Non-BR-Compliant Certificate Issuance
AI Summary CA Owner
#1563574 RESOLVED Certificate Misissuance Opened 2019-07-04 · Closed 2023-02-22 · 59% similar
SECOM: Failure to disclose Unconstrained Intermediate within 7 Days
AI Summary CA Owner
#1561013 RESOLVED Certificate Misissuance Opened 2019-06-24 · Closed 2023-02-22 · 59% similar
Entrust: Certificate issued with validity greater than 825-days
AI Summary CA Owner
#1551375 RESOLVED Certificate Misissuance Opened 2019-05-14 · Closed 2023-02-22 · 59% similar
certSIGN: "Some-State" in stateOrProvinceName
AI Summary CA Owner
#1551369 RESOLVED Certificate Misissuance Opened 2019-05-14 · Closed 2023-02-22 · 59% similar
Kamu SM: "Some-State" in stateOrProvinceName
AI Summary CA Owner
#1520299 RESOLVED Certificate Misissuance Opened 2019-01-15 · Closed 2023-02-22 · 59% similar
Hongkong Post / Certizen: Failure to report misissuance
AI Summary CA Owner
#1463975 RESOLVED Certificate Misissuance Opened 2018-05-24 · Closed 2023-02-22 · 59% similar
GRCA: Misissued certificates: Invalid commonName, commonName not in SAN
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action