An insufficiently communicated certificate change obviously leads to problems.

Heise Security is currently receiving a lot of messages about errors when establishing HTTPS / TLS connections. The cause is apparently a revoked intermediate certificate from QuoVadis Intermediate CA. The following certificate is affected:

QuoVadis Global SSL ICA G3 Obviously (on the server?) This must be replaced by a new version. QuoVadis recommends exchanging these two intermediate certificates in a reference to “infrastructure problems”:

QuoVadis Global SSL ICA G3: http://trust.quovadisglobal.com/qvsslg3.crt QuoVadis Global SSL ICA G2 http://trust.quovadisglobal.com/qvsslg2.crt digicert + Quovadis is a certification authority that signs SSL / TLS certificates, among other things. The browser can then trace their authenticity back to the actual root CA using the intermediate certificate (ICA) supplied with the certificate. Their certificate is in the list of trusted root CAs.

It is the current one Apparently a planned change, which many customers had no knowledge of. The Australian AusCERT has created an auxiliary document: AusCERT statement “QuoVadis Global SSL ICA G3” issue impacting multiple customers

(ju)