The Let’s Encrypt venture has introduced that it’ll revoke greater than three million TLS certificates after a bug was found in its Certification Authority Authorization (CAA) code.

The bug impacts the server software program utilized by Let’s Encrypt, referred to as Boulder, which permits the venture to confirm customers and their domains earlier than a TLS certificates could be issued. Let’s Encrypt has determined to revoke the TLS certificates as a result of the implementation of the CAA specification inside Boulder was affected by the bug.

Source link