← Internet Security Research Group cases
Bugzilla #2044788 Certificate Problem Report

Let's Encrypt: CRLs Temporarily Missing Revoked Serials

ASSIGNED Internet Security Research Group
AI Summary

Let's Encrypt reported an incident where several Certificate Revocation Lists (CRLs) temporarily omitted recently-added revoked entries due to a database replication issue. This problem was detected through their monitoring system. Subsequent updates to the CRLs correctly included the affected entries. The incident raised concerns regarding compliance with relevant policies that mandate revocation entries must not be removed until after the expiration date of the revoked certificates.

Model: gpt-4o-mini Generated: 2026-06-13 21:21 UTC Confidence: 0.90
Chronology
  1. Incident detected and reported
  2. Status updated
Participants
Phil Porada
External References
Original Bugzilla Case github.com github.com datatracker.ietf.org github.com
Similar Local Cases
#1955721 RESOLVED Certificate Problem Report Opened 2025-03-21 · Closed 2025-06-10 · 57% similar
Let's Encrypt: Failure to Document Analysis of Detected Vulnerabilities
AI Summary CA Owner
#1838667 RESOLVED Certificate Problem Report Opened 2023-06-15 · Closed 2023-07-05 · 53% similar
Let's Encrypt: Duplicate Serial Numbers
AI Summary CA Owner
#1954861 RESOLVED Certificate Problem Report Opened 2025-03-18 · Closed 2025-04-09 · 53% similar
Let's Encrypt: Early CRL Removal Incident
AI Summary CA Owner
#1391867 RESOLVED Certificate Problem Report Opened 2017-08-19 · Closed 2023-02-22 · 51% similar
Let's Encrypt: Non-BR-Compliant Certificate Issuance
AI Summary CA Owner
#1462735 RESOLVED Certificate Problem Report Opened 2018-05-18 · Closed 2023-02-22 · 51% similar
Let's Encrypt: Case-sensitive CAA tag processing
AI Summary CA Owner
#1648840 RESOLVED Certificate Problem Report Opened 2020-06-26 · Closed 2023-02-22 · 51% similar
Let's Encrypt: OCSP responses with no revocationReason
AI Summary CA Owner
#1793114 RESOLVED Certificate Problem Report Opened 2022-09-30 · Closed 2023-02-22 · 51% similar
Let's Encrypt: Incomplete and Inconsistent CRLs
AI Summary CA Owner
#1645276 RESOLVED Certificate Problem Report Opened 2020-06-12 · Closed 2023-02-22 · 51% similar
Let's Encrypt: Expired ISRG Root OCSP X1 Certificate
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action