ELSA-2016-2602 - mod_nss security, bug fix, and enhancement update
| Type: | SECURITY |
| Impact: | LOW |
| Release Date: | 2016-11-09 |
Description
[1.0.14-7]
- Add the permission patch to the repository (#1312583)
[1.0.14-6]
- Check the NSS certificate database directory for read permissions
by the Apache user. (#1312583)
[1.0.14-5]
- Update clean semaphore patch to not free the pinList twice.
(#1364560)
[1.0.14-4]
- Update clean semaphore patch to not close pipe twice and to
shutdown NSS database (#1364560)
[1.0.14-3]
- Clean up semaphore in nss_pcache on shutdown (#1364560)
[1.0.14-2]
- mod_nss sets r->user in fixup even if it was long ago changed
by other module (#1347298)
[1.0.14-1]
- Rebase to 1.0.14 (#1299063)
- Add support for Server Name Indication (SNI) (#1053327)
- Use upstream method to not execute live tests as root (#1256887)
- Always call SSL_ShutdownServerSessionIDCache() in ModuleKill
(#1263301, #1296685)
- Don't require NSSProxyNickname (#1280287)
- Make link to libnssckbi.so an absolute link (#1288471)
- Fail for colons in credentials with FakeBasicAuth (#1295970)
- Don't ignore NSSProtocol when NSSFIPS is enabled (#1312491)
- Check filesystem permissions on NSS database at startup (#1312583)
- OpenSSL ciphers stopped parsing at +, CVE-2016-3099 (#1323913)
- Patch to match available ciphers so tests pass (#1299063)
- Patch to fix tests in brew (#1299063)
Related CVEs
Updated Packages
| Release/Architecture | Filename | sha256 | Superseded By Advisory | Channel Label |
|
| Oracle Linux 7 (x86_64) | mod_nss-1.0.14-7.el7.src.rpm | d5174d7cc5406b06255d2037e5e144827643c5f92d5252bf0090418ead153dcb | ELBA-2018-0988 | ol7_x86_64_latest_archive |
| mod_nss-1.0.14-7.el7.src.rpm | d5174d7cc5406b06255d2037e5e144827643c5f92d5252bf0090418ead153dcb | ELBA-2018-0988 | ol7_x86_64_u3_base |
| mod_nss-1.0.14-7.el7.x86_64.rpm | b1de29e47f43239fb474a54e6c6fe651ddfc244de4525312514b831a4542babd | ELBA-2018-0988 | ol7_x86_64_latest_archive |
| mod_nss-1.0.14-7.el7.x86_64.rpm | b1de29e47f43239fb474a54e6c6fe651ddfc244de4525312514b831a4542babd | ELBA-2018-0988 | ol7_x86_64_u3_base |
This page is generated automatically and has not been checked for errors or omissions. For clarification
or corrections please contact the Oracle Linux ULN team
