← Government of Hong Kong (SAR), Hongkong Post, Certizen cases
Bugzilla #2032063 Certificate Problem Report

Hongkong Post: Certificates with invalid embedded SCT signature

ASSIGNED Government of Hong Kong (SAR), Hongkong Post, Certizen
AI Summary

Hongkong Post received a certificate problem report regarding certificates with invalid embedded Signed Certificate Timestamps (SCTs). An investigation revealed that the issue was caused by a CT log that was improperly processed during a recent update, leading to the issuance of certificates with malformed SCT extensions. Four certificates were affected, all of which have since been revoked. The CA has implemented corrective actions and is currently testing a software patch to prevent future occurrences.

Model: gpt-4o-mini Generated: 2026-06-13 21:27 UTC Confidence: 0.90
Chronology
  1. CT log removed from issuance system
  2. Certificate problem report received
  3. All affected certificates revoked
  4. Patch deployment planned
Participants
Man Ho
External References
Original Bugzilla Case crt.sh
Similar Local Cases
#1804843 RESOLVED Certificate Problem Report Opened 2022-12-09 · Closed 2023-04-19 · 61% similar
Hongkong Post: Subject CN converted to Unicode representation incident
AI Summary CA Owner
#1886406 RESOLVED Certificate Problem Report Opened 2024-03-20 · Closed 2024-08-28 · 60% similar
Hongkong Post: TLS certificates with Certificate Policies extension that does not assert http scheme
AI Summary CA Owner
#1887008 RESOLVED Certificate Problem Report Opened 2024-03-22 · Closed 2024-08-28 · 60% similar
Hongkong Post: TLS certificates with basicConstraints not marked as critical
AI Summary CA Owner
#1886722 RESOLVED Certificate Problem Report Opened 2024-03-21 · Closed 2024-08-28 · 58% similar
Hongkong Post: Delayed response to CPR
AI Summary CA Owner
#1267332 RESOLVED Certificate Problem Report Opened 2016-04-25 · Closed 2022-11-14 · 55% similar
Hongkong Post e-Cert CA 1 - 10 issuing certificates without subject alternative name extension
AI Summary CA Owner
#1675314 RESOLVED Certificate Problem Report Opened 2020-11-04 · Closed 2023-02-22 · 45% similar
Telekom Security: Wrong jurisdiction entries in certificates
AI Summary CA Owner
#1891531 RESOLVED Certificate Problem Report Opened 2024-04-15 · Closed 2024-05-02 · 45% similar
Digicert: Government Entity listed instead of registration number
AI Summary CA Owner
#2006711 RESOLVED Certificate Problem Report Opened 2025-12-17 · Closed 2026-02-11 · 45% similar
NAVER Cloud Trust Services: Encoding non-conformity in SCT extensions
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action