← Telia Company cases
Bugzilla #1528264 Certificate Misissuance

Telia: Misissued certificate - Invalid OU value "-"

RESOLVED FIXED Telia Company
AI Summary

Telia Company reported a misissuance of SSL certificates due to an invalid Organizational Unit (OU) value of "-". This issue was discovered during a mass lint scan conducted on February 8, 2019, which identified nine invalid certificates across various error categories. The CA took immediate action by revoking the affected certificates within the required timeframe. A root cause analysis revealed a bug in the OU verification code, which has since been fixed. Telia has implemented pre-checks to prevent similar issues from occurring in the future.

Model: gpt-4o-mini Generated: 2026-06-13 18:03 UTC Confidence: 0.90
Chronology
  1. Discovery of invalid certificates during mass lint scan
  2. Preliminary analysis and decision to revoke certificates
  3. Quick analysis confirmed the issue could not be reproduced
  4. Root cause analysis completed
Participants
pekka.lahtiharju@teliasonera.com wthayer@fastly.com bugzilla@tds.xyz bug-husbandry-bot@mozilla.bugs
External References
Original Bugzilla Case crt.sh crt.sh crt.sh
Similar Local Cases
#1528263 RESOLVED Certificate Misissuance Opened 2019-02-15 · Closed 2023-02-22 · 82% similar
Telia: Misissued certificate - Invalid wildcard format
AI Summary CA Owner
#1528261 RESOLVED Certificate Misissuance Opened 2019-02-15 · Closed 2023-02-22 · 72% similar
Telia: Misissued certificate - FQDN without domain part (e_dnsname_not_valid_tld)
AI Summary CA Owner
#1524567 RESOLVED Certificate Misissuance Opened 2019-02-01 · Closed 2023-02-22 · 71% similar
Telia: invalid IP value in SAN DNS field
AI Summary CA Owner
#1528259 RESOLVED Certificate Misissuance Opened 2019-02-15 · Closed 2023-02-22 · 70% similar
Telia: misissued certificate - FQDN value incorrectly in SAN rfc822 field
AI Summary CA Owner
#1612332 RESOLVED Certificate Misissuance Opened 2020-01-30 · Closed 2023-02-22 · 67% similar
Telia: Ambiguity on KeyUsage with ECC public key
AI Summary CA Owner
#1828105 RESOLVED Certificate Misissuance Opened 2023-04-14 · Closed 2023-06-30 · 59% similar
Telia: Misissued certificate - wrong OrganizationName value "Hair 8 Brains"
AI Summary CA Owner
#1426247 RESOLVED Certificate Misissuance Opened 2017-12-19 · Closed 2023-02-22 · 57% similar
Telia: Non-BR-Compliant OCSP Responder
AI Summary CA Owner
#1859314 RESOLVED Certificate Misissuance Opened 2023-10-16 · Closed 2024-01-26 · 54% similar
Telia: TLS certificates issued in violation of TLS BR v2.0.1
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action