Symantec PKI Distrust Impact Tracking |
|||||||
Issue descriptionAll remaining certificates issued from the Legacy Symantec PKI are being distrusted starting in M70 ( crbug.com/796230 ). As of the point this code landed, there are many top sites using certificates that are impacted by this change. This bug is to track impact and site breakage and coordinate outreach to ensure affected site operators replace the distrusted certificates in time. Original announcement: https://security.googleblog.com/2017/09/chromes-plan-to-distrust-symantec.html Instructions for affected site operators: https://security.googleblog.com/2018/03/distrust-of-symantec-pki-immediate.html
,
Jul 27
,
Jul 28
Issue 868378 has been merged into this issue.
,
Jul 28
Issue 868334 has been merged into this issue.
,
Aug 1
Issue 869201 has been merged into this issue.
,
Aug 1
Issue 869174 has been merged into this issue.
,
Aug 2
Issue 870334 has been merged into this issue.
,
Aug 3
Issue 870911 has been merged into this issue.
,
Aug 5
Issue 870778 has been merged into this issue.
,
Aug 5
,
Aug 7
,
Aug 8
https://accounts.intuit.com/ is affected by this issue; can't access it in M70 canary.
,
Aug 10
it seems a lot of sites is affected, is there a temporary way or some special flag to bypass the check?
,
Aug 10
This issue affects the bill-pay feature on bankofamerica.com. Login required from main site, but the internal failing origin is: https://billpay-ui.bankofamerica.com/ The main BoA sites seem unaffected.
,
Aug 13
Issue 873446 has been merged into this issue.
,
Aug 14
Issue 874052 has been merged into this issue.
,
Aug 14
Issue 874049 has been merged into this issue.
,
Aug 14
Issue 874137 has been merged into this issue.
,
Aug 14
,
Aug 14
Issue 867830 has been merged into this issue.
,
Aug 15
Others from Chrome help forum: www.huntington.com https://productforums.google.com/forum/#!topic/chrome/BpOgq88RIc0 https://productforums.google.com/forum/#!topic/chrome/ZVd_KRbutII www.bancsabadell.com https://productforums.google.com/forum/#!topic/chrome/I2MVMVVaLP8 www.paypal.com https://productforums.google.com/forum/#topic/chrome/LcSu_fwL_sk www.santander.co.uk https://productforums.google.com/forum/#topic/chrome/0AsLd1MUonY
,
Aug 15
Issue 870897 has been merged into this issue.
,
Aug 17
Same error in paypal.com as well Issue 839935 , C#7.
,
Aug 17
www.paydirekt.de - online payment provider endorsed/promoted by major German banks
,
Aug 17
,
Aug 17
Issue 874505 has been merged into this issue.
,
Aug 22
Issue 874507 has been merged into this issue.
,
Aug 22
Japan Airlines: https://www121.jal.co.jp/
,
Aug 23
,
Aug 26
German Railway https://www.bahn.de
,
Aug 28
https://www.mycardstatement.com (TCM BANK, N.A.) https://www.unionbank.com/
,
Aug 29
Air Canada and United are affected. Can't book flights.
,
Aug 30
,
Aug 31
,
Aug 31
Are we adding the list of all sites that are effected to this change? If yes, here is one more. https://appleinsider.com/ Its better to share a Google Form and collect all the URLs into a spreadsheet.
,
Oct 3
,
Oct 9
Here is another https://www.we-energies.com/myaccount
,
Oct 9
,
Oct 15
,
Oct 16
Issue 895848 has been merged into this issue.
,
Oct 17
Possible interaction with OpenDNS and/or Netgear C7000 parental controls features and settings. This was reported by a user on Chromebook Central. User was blocked from accessing Google services (Gmail, YouTube. Google Docs and Google Sheets) and Facebook, with the error NET::ERR_CERT_AUTHORITY_INVALID https://productforums.google.com/forum/#!topic/chromebook-central/3kn9cDwb0FA Removal of OpenDNS and turning off router's parental controls solved the issue. Further investigation is ongoing. |
|||||||
►
Sign in to add a comment |
|||||||
Comment 1 by asymmetric@chromium.org
, Jul 26