Let's Encrypt is revoking digital certificates after discovering CAA bug

Let's Encrypt has discovered a bug in its Certificate Authority Authorization (CAA) code and will have to revoke millions of certificates today unless customers force a renewal of their certificates. Any site that fails to renew its certificate will display security warnings to visitors until the problem is rectified. While no specific sites have been mentioned, with up to three million certificates involved, there is a chance that some high-profile sites could be affected. The bug means that there is a problem in checking whether a Let's Encrypt subscriber has a valid security certificate for all their domains.  A mere… [Continue Reading]