← Apple Inc. cases
Bugzilla #1669618 Certificate Problem Report

Apple: Empty SingleExtension in OCSP responses

RESOLVED FIXED Apple Inc.
AI Summary

Apple identified an issue with their OCSP responses containing an empty SingleExtension, similar to a previously reported bug by GlobalSign. The problem was traced back to the version of EJBCA they were using, which exhibited non-compliant behavior. Apple took immediate action by investigating the issue, contacting the software provider, and implementing a fix by upgrading to a newer version of EJBCA. They also updated their OCSP lints and test cases to prevent future occurrences. The incident did not affect certificate issuance.

Model: gpt-4o-mini Generated: 2026-06-13 15:12 UTC Confidence: 1.00
Chronology
  1. Identified potential impact from GlobalSign's report.
  2. Contacted PrimeKey regarding the issue.
  3. Deployed alpha version of EJBCA 7.4.3 and verified the fix.
  4. Completed all remediation tasks.
  5. Scheduled to close the bug.
Participants
Apple CA Ryan Sleevi B Wilson
External References
Original Bugzilla Case bugzilla.mozilla.org
Similar Local Cases
#1711208 RESOLVED Certificate Problem Report Opened 2021-05-14 · Closed 2023-02-22 · 57% similar
Asseco DS / Certum: Incorrect localityName
AI Summary CA Owner
#1634795 RESOLVED Certificate Problem Report Opened 2020-05-01 · Closed 2023-02-22 · 55% similar
Google Trust Services: Incorrect revocation data temporarily served for GTS Y3 & Y4
AI Summary CA Owner
#1647084 RESOLVED Certificate Problem Report Opened 2020-06-20 · Closed 2023-02-22 · 55% similar
DigiCert / Microsoft: inconsistent disclosure of externally-operated intermediate
AI Summary CA Owner
#1533655 RESOLVED Certificate Problem Report Opened 2019-03-08 · Closed 2023-02-22 · 55% similar
DigiCert: Apple: Non-compliant Serial Numbers
AI Summary CA Owner
#1656487 RESOLVED Certificate Problem Report Opened 2020-07-31 · Closed 2023-02-22 · 54% similar
Izenpe: Failure to revoke within 5 days
AI Summary CA Owner
#1651651 RESOLVED Certificate Problem Report Opened 2020-07-09 · Closed 2023-02-22 · 53% similar
Actalis: Failure to revoke within 7 days: OCSP EKU issue
AI Summary CA Owner
#1955365 RESOLVED Certificate Problem Report Opened 2025-03-20 · Closed 2025-05-19 · 53% similar
Apple: Public Key Reuse
AI Summary CA Owner
#1677234 RESOLVED Certificate Problem Report Opened 2020-11-13 · Closed 2023-02-22 · 52% similar
Apple: OCSP availability 2020-11-12
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action