Name of the Vulnerable Software and Affected Versions ca-certificates-mozilla versions prior to 2.62

Description The issue is related to an update of Mozilla SSL root CAs to the 2.62 state. This update adds several new root CAs, including Atos TrustedRoot Root CA ECC G2 2020, Atos TrustedRoot Root CA ECC TLS 2021, Atos TrustedRoot Root CA RSA G2 2020, Atos TrustedRoot Root CA RSA TLS 2021, BJCA Global Root CA1, BJCA Global Root CA2, LAWtrust Root CA2 (4096), Sectigo Public Email Protection Root E46, Sectigo Public Email Protection Root R46, Sectigo Public Server Authentication Root E46, Sectigo Public Server Authentication Root R46, SSL.com Client ECC Root CA 2022, SSL.com Client RSA Root CA 2022, SSL.com TLS ECC Root CA 2022, and SSL.com TLS RSA Root CA 2022. It also removes several CAs, including Chambers of Commerce Root, E-Tugra Certification Authority, E-Tugra Global Root CA ECC v3, E-Tugra Global Root CA RSA v3, and Hongkong Post Root CA 1.

Recommendations Update to version 2.62 or later to resolve the issue.