← AC Camerfirma, S.A. cases
Bugzilla #1357067
Certificate Problem Report
Camerfirma: certs with duplicate SANs and without localityName or stateOrProvinceName
RESOLVED
AC Camerfirma, S.A.
AI Summary
Camerfirma issued certificates with duplicate Subject Alternative Names (SANs) and omitted localityName and stateOrProvinceName fields. This issue was identified and reported, leading to a prompt response from Camerfirma to rectify the problem. All affected certificates were re-issued with the correct information, and the erroneous ones were revoked. The resolution process was documented and communicated to all stakeholders involved.
Chronology
- Internal review discovered issues with issued certificates.
- Mozilla opened a bug report regarding the issues.
- Camerfirma confirmed the bug was fixed.
- Affected certificates were re-issued and most were revoked.
Participants
Gervase Markham [:gerv]
Kathleen Wilson
Iñigo
External References
Similar Local Cases
Camerfirma: Startcom are issuing by proxy using Camerfirma
EV SSL certificate (and OCSP response) for www.camerfirma.com fails to meet EV Guidelines
DigiCert: ECCE 001 issuing certificates without subject alternative name extension
StartCom: IV without localityName or stateOrProvinceName
DigiCert: no subject alternative name in Siemens certs
Bug in GlobalSign Certificate Centre not populating EKUs in 68 SSL certificates
DigiCert: Non-BR Compliant Certificates - missing CP/CPS OID
Swisscom: certificates without DNS names in subjectAltName