← Microsoft Corporation cases
Bugzilla #2009543 Certificate Problem Report

Microsoft PKI Services: Improper Disclosure of CRLs – Does Not Match CA Subject

RESOLVED FIXED Microsoft Corporation
AI Summary

Microsoft PKI Services (MPS) identified additional syntax issues with CRL URLs disclosed in CCADB during an investigation into improper CRL disclosures. The issue was linked to the Microsoft ECC Root Certificate Authority 2017, which had been marked as removed in CCADB. The investigation confirmed that there was no non-compliance with CCADB Policy Section 6.2, as the CRL field for the removed CA was cleared to resolve a false positive alert from CRL Watch. The case has been resolved with no further actions required.

Model: gpt-4o-mini Generated: 2026-06-13 21:28 UTC Confidence: 1.00
Chronology
  1. MPS opened Bugzilla 2007221 regarding improper CRL disclosures.
  2. MPS discovered additional syntax issues with CRL URLs during investigation.
  3. Confirmed that the CA in question was marked 'removed' in CCADB.
  4. CRL field for the removed CA was cleared in CCADB.
  5. Closure report submitted; case closed.
Participants
CentralPKI@microsoft.com incident-reporting@ccadb.org
External References
Original Bugzilla Case bugzilla.mozilla.org www.ccadb.org sslmate.com
Similar Local Cases
#2009539 RESOLVED Certificate Problem Report Opened 2026-01-10 · Closed 2026-02-17 · 71% similar
Microsoft PKI Services: Improper Disclosure of CRLs – IDP – Existing CAs
AI Summary CA Owner
#2008847 RESOLVED Certificate Problem Report Opened 2026-01-06 · Closed 2026-02-17 · 65% similar
Microsoft PKI Services: Sample Site Certificates expired
AI Summary CA Owner
#2009545 RESOLVED Certificate Problem Report Opened 2026-01-10 · Closed 2026-02-11 · 63% similar
Microsoft PKI Services: Improper Disclosure of CRLs – Protocol Scheme
AI Summary CA Owner
#2009542 RESOLVED Certificate Problem Report Opened 2026-01-10 · Closed 2026-02-17 · 61% similar
Microsoft PKI Services: Improper Disclosure of CRLs – IDP – New CAs
AI Summary CA Owner
#2007221 RESOLVED Certificate Problem Report Opened 2025-12-20 · Closed 2026-03-02 · 61% similar
Microsoft PKI Services: Improper Disclosure of CRL
AI Summary CA Owner
#1974592 RESOLVED Certificate Problem Report Opened 2025-06-28 · Closed 2025-08-30 · 59% similar
Microsoft PKI Services: Pre-Sign Linting Validation did not occur in ICA creation
AI Summary CA Owner
#2009541 RESOLVED Certificate Problem Report Opened 2026-01-10 · Closed 2026-02-11 · 57% similar
Microsoft PKI Services: Failure to report within 72 hrs - Sample Site Certs Expired
AI Summary CA Owner
#1999850 ASSIGNED Certificate Problem Report Opened 2025-11-13 Still Open · 57% similar
Microsoft PKI Services: OCSP Non-Compliance
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action