Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8194693

jdk considers one of its own root certificates insufficiently secure

    XMLWordPrintable

Details

    • Bug
    • Resolution: Not an Issue
    • P3
    • None
    • None
    • security-libs
    • None

    Description

      One of the root certificates in the cacerts file doesn't pass the jdk's own security tests:

      ~/jdk/jdk11/bin/keytool -importkeystore -srckeystore src/java.base/share/lib/security/cacerts -srcstorepass changeit -destkeystore /tmp/t1.jks -deststorepass changeit

      ...
      Import command completed: 80 entries successfully imported, 0 entries failed or cancelled

      Warning:
      <gtecybertrustglobalca [jdk]> uses the MD5withRSA signature algorithm which is considered a security risk.

      Attachments

        Issue Links

          relates to

          Enhancement - null JDK-8189131 Open-source the Oracle JDK Root Certificates

          • P2 - Crashes, loss of data, severe memory leak.
          • Resolved

          Enhancement - null JDK-8195793 Remove GTE CyberTrust Global Root

          • P3 - Major loss of function.
          • Resolved

          Activity

            People

              rhalade Rajan Halade
              martin Martin Buchholz
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: