ELSA-2019-1951

ULN >
Oracle Linux Errata repository >
ELSA-2019-1951

ELSA-2019-1951 - nss and nspr security, bug fix, and enhancement update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2019-08-05

Description

nspr
[4.21.0-2]
- Rebuild

[4.21.0-1]
- Update to NSPR 4.21

nss
[3.44.0-7]
- Backport fixes from 3.44.1

[3.44.0-6]
- Add continuous RNG test required by FIPS
- fipstest: use CKM_TLS12_MASTER_KEY_DERIVE instead of vendor specific mechanism

[3.44.0-5]
- Rebuild with the correct build target

[3.44.0-4.1]
- rebuild to try to retrigger CI tests

[3.44.0-4]
- Fix certutil man page
- Fix extracting a public key from a private key for dh, ec, and dsa

[3.44.0-3]
- Disable TLS 1.3 under FIPS mode
- Disable RSASSA-PKCS1-v1_5 in TLS 1.3
- Fix post-handshake auth transcript calculation if
SSL_ENABLE_SESSION_TICKETS is set
- Revert the change to use XDG basedirs (mozilla#818686)

[3.44.0-2]
- Add ike mechanisms in softokn
- Add FIPS checks in softoken

[3.44.0-1]
- Update to NSS 3.44
- Define NSS_SEED_ONLY_DEV_URANDOM=1 to exclusively use getentropy
- Use %autosetup
- Clean up manual pages generation
- Clean up %check
- Remove prelink dependency, which is not available in RHEL-8
- Remove upstreamed patches

Related CVEs

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	nspr-4.21.0-2.el8_0.src.rpm	2a0f79dd0bde77aca9dfafab64997f019f56d8f5e69e0feaf634b9c29f451bbf	-	ol8_aarch64_appstream
	nss-3.44.0-7.el8_0.src.rpm	533c5b234171917ada2dc036f0fb8ea77bf3c61814a266d93e9aa975fb12f3e1	-	ol8_aarch64_appstream
	nspr-4.21.0-2.el8_0.aarch64.rpm	ac108d16ab808d5d23129b023d74b1ee094bca921945108bc0fd97609f9dc00d	-	ol8_aarch64_appstream
	nspr-devel-4.21.0-2.el8_0.aarch64.rpm	7856ffc4208e6cf6628e57660dee4947c904fe239f7e14d489e87de840021f60	-	ol8_aarch64_appstream
	nss-3.44.0-7.el8_0.aarch64.rpm	7955b0adf96639e2569665db36e75e0d10d88b5885ee7b2d725c0974a9f41344	-	ol8_aarch64_appstream
	nss-devel-3.44.0-7.el8_0.aarch64.rpm	bf501547de5bfcd72418ef2791fa3e319a32ee2db3a18129851bccff8a1209fa	-	ol8_aarch64_appstream
	nss-softokn-3.44.0-7.el8_0.aarch64.rpm	d7c5dea385b7562c9134ed8a18992b116031972e94c96c4c430bf0ccc4656066	-	ol8_aarch64_appstream
	nss-softokn-devel-3.44.0-7.el8_0.aarch64.rpm	2799630a4c687757d5ab7a57a129291101eade48130719fcc5247d9f197c26f4	-	ol8_aarch64_appstream
	nss-softokn-freebl-3.44.0-7.el8_0.aarch64.rpm	2fd3ba98c9a4648815d8d9349dbb7cfacef2dd390dfa17822defdad238417adf	-	ol8_aarch64_appstream
	nss-softokn-freebl-devel-3.44.0-7.el8_0.aarch64.rpm	8209df1f9cf5d1271d083ea3cf618546040a2e177fc9e45d7aa26f74221ec1ec	-	ol8_aarch64_appstream
	nss-sysinit-3.44.0-7.el8_0.aarch64.rpm	7a29944ecc9bae9800ca332a9b4aa34bb4e510c73e6929389fcd6686e7e60327	-	ol8_aarch64_appstream
	nss-tools-3.44.0-7.el8_0.aarch64.rpm	8a663c25803b49a89e722c2682682a83b34dd482b9ea6aec622829923a04da86	-	ol8_aarch64_appstream
	nss-util-3.44.0-7.el8_0.aarch64.rpm	3418bb8dc03d1c9a59a52519d15eb35a0ad2ae34f75be7115b7d7175d74b7d84	-	ol8_aarch64_appstream
	nss-util-devel-3.44.0-7.el8_0.aarch64.rpm	5da5e3f236b3058fc2f4a6887f271ca0173a9a7e6cdedd07c8d7deca1d104550	-	ol8_aarch64_appstream

Oracle Linux 8 (x86_64)	nspr-4.21.0-2.el8_0.src.rpm	2a0f79dd0bde77aca9dfafab64997f019f56d8f5e69e0feaf634b9c29f451bbf	-	ol8_x86_64_appstream
	nss-3.44.0-7.el8_0.src.rpm	533c5b234171917ada2dc036f0fb8ea77bf3c61814a266d93e9aa975fb12f3e1	-	ol8_x86_64_appstream
	nspr-4.21.0-2.el8_0.i686.rpm	011aa97fa5cdf746d10fcfd8be91d5e16ab87254e8b2fdc5932d72a89a9106a6	-	ol8_x86_64_appstream
	nspr-4.21.0-2.el8_0.x86_64.rpm	c29bd87b4bc01d81264234140b1936254efc9564b8117a3dd86e2c3c280b1225	-	ol8_x86_64_appstream
	nspr-devel-4.21.0-2.el8_0.i686.rpm	39f61fed54ca30e5baaf60d6b0c1958b7ca60e9d4b69724a4e89916e0077713b	-	ol8_x86_64_appstream
	nspr-devel-4.21.0-2.el8_0.x86_64.rpm	2ae1455901a1a50ee0a6e32b82d239f581b3013e96773a50f1b34f471e1d3c31	-	ol8_x86_64_appstream
	nss-3.44.0-7.el8_0.i686.rpm	9e517fe0358dfe3364d8b65316ffab1e125d2b0a3aa7b2ccf837b488249cd1d4	-	ol8_x86_64_appstream
	nss-3.44.0-7.el8_0.x86_64.rpm	c8c0ee80b860e0e1b73225e44786b9425516bd079bf49fc0c450b23ab096563a	-	ol8_x86_64_appstream
	nss-devel-3.44.0-7.el8_0.i686.rpm	3e9a852e8b4a70dad3b1471252a7358bb8df6327835088f9d4bce839758b76ba	-	ol8_x86_64_appstream
	nss-devel-3.44.0-7.el8_0.x86_64.rpm	56fb8ba055e6b365945b1fa687c3e458338a93f77d3ee42c65a73d3e791807b0	-	ol8_x86_64_appstream
	nss-softokn-3.44.0-7.el8_0.i686.rpm	4aa562d85b9cef906b0b2d5724c4114e7191458556e1800711b200fa31a35002	-	ol8_x86_64_appstream
	nss-softokn-3.44.0-7.el8_0.x86_64.rpm	3730d407445354e2e8f4758d8fa187ec731c98f1be51a5de2199b041072aa0ae	-	ol8_x86_64_appstream
	nss-softokn-devel-3.44.0-7.el8_0.i686.rpm	eb000654adb9ae500109bfb03dc94244b3c6d53e13a52dfab64e9adeb5fcc7a0	-	ol8_x86_64_appstream
	nss-softokn-devel-3.44.0-7.el8_0.x86_64.rpm	011db6f4614fc32b9325f2ae83095bacea541c584fe6feefad244acd90d1fffc	-	ol8_x86_64_appstream
	nss-softokn-freebl-3.44.0-7.el8_0.i686.rpm	976bd88148bb9e7d5072784db0678cf65e062d5bf2df15691e4ae599187dc40c	-	ol8_x86_64_appstream
	nss-softokn-freebl-3.44.0-7.el8_0.x86_64.rpm	2b6053282de10ee349c091c35c2ee9ec066ad380e52a7cad4ee768822f3f04d3	-	ol8_x86_64_appstream
	nss-softokn-freebl-devel-3.44.0-7.el8_0.i686.rpm	098d327379285f872d4a39402d67333f00863c2d5bbd15b076a2a8dcac07e016	-	ol8_x86_64_appstream
	nss-softokn-freebl-devel-3.44.0-7.el8_0.x86_64.rpm	cf3443e67321ddfb96c4ee78279797ffd6670bbabeb196567f284fcef5b279af	-	ol8_x86_64_appstream
	nss-sysinit-3.44.0-7.el8_0.x86_64.rpm	82ecd0b2e12ed98e3c9011947fef2705ebb956972d88f4fa1b247a36dbdcd59f	-	ol8_x86_64_appstream
	nss-tools-3.44.0-7.el8_0.x86_64.rpm	fb255c5777fbdcf659d2d24a705170b38814d2fb1709b65523e31b46c218664d	-	ol8_x86_64_appstream
	nss-util-3.44.0-7.el8_0.i686.rpm	b32ff4c6c9c42604626ae7e0a3d8a24381ffa9b0f0d9d9586a79b3115953a519	-	ol8_x86_64_appstream
	nss-util-3.44.0-7.el8_0.x86_64.rpm	a43c0d6f5a7c1d1853622544fa559411362564f7a70f656198e0458ac2ad3180	-	ol8_x86_64_appstream
	nss-util-devel-3.44.0-7.el8_0.i686.rpm	3b58195751f250b20a0c4887773916bb262eea3f34b162e08f49fc4e7b1dd1f8	-	ol8_x86_64_appstream
	nss-util-devel-3.44.0-7.el8_0.x86_64.rpm	14ae300e8923a033f41edac2a9017bf40be3f79d11b4510404ddf1d8d90b1fdf	-	ol8_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691