|  support |  documentation |  report a bug |  advanced search |  search howto |  statistics |  random bug |  login
Bug #81489 delivers wrong intermediate certificate
Submitted: 2021-09-30 09:58 UTC Modified: 2021-09-30 12:46 UTC
From: hanno at hboeck dot de Assigned: cmb (profile)
Status: Closed Package: Website problem
PHP Version: Irrelevant OS:
Private report: No CVE-ID: None
 [2021-09-30 09:58 UTC] hanno at hboeck dot de
The webpage is delivering the old, now expired Let's Encrypt intermediate certificate.

Web browsers usually work around such issues most of the time, but in other clients this leads to an error, you can test e.g. with curl.

You should replace it with one of the current certificate chains.

Test script:
curl # will show a certificate error


Add a Patch

Pull Requests

Add a Pull Request


AllCommentsChangesGit/SVN commitsRelated reports
 [2021-09-30 10:10 UTC]
-Status: Open +Status: Feedback -Assigned To: +Assigned To: cmb
 [2021-09-30 10:10 UTC]
Hmm, I see the ISRG Root X1 certificate, but not the old DST Root
CA X3 in the chain.  That appears to be correct[1].  Not sure what
to do.

[1] <>
 [2021-09-30 12:46 UTC]
-Status: Feedback +Status: Closed
 [2021-09-30 12:46 UTC]
The server admin has just fixed this.
PHP Copyright © 2001-2022 The PHP Group
All rights reserved.
Last updated: Sat Oct 01 14:05:52 2022 UTC