← Internet Security Research Group cases
Bugzilla #1921573 Certificate Problem Report

Let's Encrypt: No Meaningful Subject Distinguished Name

RESOLVED FIXED Internet Security Research Group
AI Summary

Let's Encrypt identified a conflict in their Certificate Policy/Certificate Practice Statement (CP/CPS) regarding the Subject Distinguished Name in their certificates. This conflict arose from a policy change allowing certificates without a Common Name, which contradicted existing statements requiring a meaningful Subject field. Following the discovery, issuance was halted, and an updated CP/CPS was published. A total of 133,613 unexpired certificates were revoked due to this issue, and a full incident report was provided detailing the timeline and impact of the incident.

Model: gpt-4o-mini Generated: 2026-06-13 21:18 UTC Confidence: 1.00
Chronology
  1. Conflict discovered in CP/CPS
  2. Revocation of affected certificates completed
  3. Full incident report published
  4. New CP/CPS version published
Participants
Preston Locke Lena C. Clements B. Wilson
External References
Original Bugzilla Case letsencrypt.org letsencrypt.org
Similar Local Cases
#1955721 RESOLVED Certificate Problem Report Opened 2025-03-21 · Closed 2025-06-10 · 65% similar
Let's Encrypt: Failure to Document Analysis of Detected Vulnerabilities
AI Summary CA Owner
#1795483 RESOLVED Certificate Problem Report Opened 2022-10-14 · Closed 2023-02-22 · 56% similar
Let's Encrypt: Delayed revocation for removed gTLD
AI Summary CA Owner
#1838667 RESOLVED Certificate Problem Report Opened 2023-06-15 · Closed 2023-07-05 · 52% similar
Let's Encrypt: Duplicate Serial Numbers
AI Summary CA Owner
#1576789 RESOLVED Certificate Problem Report Opened 2019-08-27 · Closed 2024-05-09 · 51% similar
Let's Encrypt: 2019.08.20 Incident: Incorrect OCSP responses under certain conditions
AI Summary CA Owner
#1742704 RESOLVED Certificate Problem Report Opened 2021-11-23 · Closed 2024-05-09 · 51% similar
Let's Encrypt: Potential Denial of Service against websites with broad private key reuse
AI Summary CA Owner
#1793114 RESOLVED Certificate Problem Report Opened 2022-09-30 · Closed 2023-02-22 · 51% similar
Let's Encrypt: Incomplete and Inconsistent CRLs
AI Summary CA Owner
#1391867 RESOLVED Certificate Problem Report Opened 2017-08-19 · Closed 2023-02-22 · 50% similar
Let's Encrypt: Non-BR-Compliant Certificate Issuance
AI Summary CA Owner
#1446080 RESOLVED Certificate Problem Report Opened 2018-03-15 · Closed 2023-02-22 · 50% similar
Let's Encrypt: Improper encoding of wildcard certificates
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action