ELSA-2020-3280

ELSA-2020-3280 - nss and nspr security, bug fix, and enhancement update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2020-08-04

Description

nspr
[4.25.0-2]
- Rebuild

[4.25.0-1]
- Update to NSPR 4.25

nss
[3.53.1-11]
- Fix issue with upgradedb where upgradedb expects standard to
generate dbm databases, not sql databases (default in RHEL8)

[3.53.1-10]
- Disable dh timing test because it's unreliable on s390

[3.53.1-9]
- Explicitly enable upgradedb/sharedb test cycles

[3.53.1-8]
- Disable Delegated Credentials for TLS

[3.53.1-7]
- Fix attribute decryption issue where the private key components
integrity check on private attributes where not being checked.

[3.53.1-6]
- Update nss-rsa-pkcs1-sigalgs.patch to the upstream version

[3.53.1-5]
- Include required checks for dh and ecdh key generation in FIPS mode.

[3.53.1-4]
- Add better checks for dh derive operations in FIPS mode.

[3.53.1-3]
- Disable NSS_HASH_ALG_SUPPORT as well for MD5 (#1849938)
- Adjust for update-crypto-policies packaging change (#1848649)
- Fix compilation with -Werror=strict-prototypes (#1843417)

[3.53.1-2]
- Fix regression in MD5 disablement (#1849938)
- Include rsa_pkcs1_* in signature_algorithms extension (#1847945)

[3.53.1-1]
- Update to NSS 3.53.1

[3.53.0-1]
- Update to NSS 3.53

Related CVEs

CVE-2019-17006

CVE-2020-12402

CVE-2019-17023

CVE-2019-11756

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label
Oracle Linux 8 (aarch64)	nspr-4.25.0-2.el8_2.src.rpm	3e3faeba3337a486a21c84574a36f057d1627859a1acb1f374a6c3f5f6174419	-	ol8_aarch64_appstream
	nss-3.53.1-11.el8_2.src.rpm	8ffb52c4567d3833eb2521dc56fa86cfdc0231c267697958da8d4aeb83d0e4f8	-	ol8_aarch64_appstream
	nspr-4.25.0-2.el8_2.aarch64.rpm	851a1b8e43bf650e0eeccf0fec2d9233038da6db17516ff062e75c0d6b737bcb	-	ol8_aarch64_appstream
	nspr-devel-4.25.0-2.el8_2.aarch64.rpm	2211c5d45248d17699f8319843e68c09bc7151fb3914290a3ee8857ac0edeb19	-	ol8_aarch64_appstream
	nss-3.53.1-11.el8_2.aarch64.rpm	c192f4fe8e0f1b0d4b2d5ab7b2e0c93f528219e53af81e0e62f8df348afb4958	-	ol8_aarch64_appstream
	nss-devel-3.53.1-11.el8_2.aarch64.rpm	859f4ff40c265478d4df6591096cc8b187d1329cfde0092b78c94f6d0a837412	-	ol8_aarch64_appstream
	nss-softokn-3.53.1-11.el8_2.aarch64.rpm	02b339bbe57d9483514dd1283283d2fb0315018411bde074cf76e9998e996584	-	ol8_aarch64_appstream
	nss-softokn-devel-3.53.1-11.el8_2.aarch64.rpm	806fe1aec5abc515ecf924898f2a2ce307b70061a7590d033882697928840ec1	-	ol8_aarch64_appstream
	nss-softokn-freebl-3.53.1-11.el8_2.aarch64.rpm	370696bc92b09c0af89b28c66680a99d61b61e6f6af31703824ca71fdeb38d28	-	ol8_aarch64_appstream
	nss-softokn-freebl-devel-3.53.1-11.el8_2.aarch64.rpm	63fb2c281d81a59f51b3c8c6c0b5d9c53056031d03ebd4af7135612c66881776	-	ol8_aarch64_appstream
	nss-sysinit-3.53.1-11.el8_2.aarch64.rpm	ea0c6fe3761f5a1bd13a9cd98ef175b2d997bf094450478d1b54bf0506742732	-	ol8_aarch64_appstream
	nss-tools-3.53.1-11.el8_2.aarch64.rpm	1e049d636c6be667c127afa886a779a44607755e3dfb3c01bcf1bc954db96c7d	-	ol8_aarch64_appstream
	nss-util-3.53.1-11.el8_2.aarch64.rpm	45c815e0a5da9bb7031134da12b3a89be009e247e293e47b44735ae00d56a9fa	-	ol8_aarch64_appstream
	nss-util-devel-3.53.1-11.el8_2.aarch64.rpm	b6e9b8c4dbd499238a037fea58b0d9ad9504b0a489f9f99cf626817587b98030	-	ol8_aarch64_appstream
Oracle Linux 8 (x86_64)	nspr-4.25.0-2.el8_2.src.rpm	3e3faeba3337a486a21c84574a36f057d1627859a1acb1f374a6c3f5f6174419	-	ol8_x86_64_appstream
	nss-3.53.1-11.el8_2.src.rpm	8ffb52c4567d3833eb2521dc56fa86cfdc0231c267697958da8d4aeb83d0e4f8	-	ol8_x86_64_appstream
	nspr-4.25.0-2.el8_2.i686.rpm	bac78d9abe22dbb3a7291d3cec89c030c7be472cee30c8aeb3221389ae566423	-	ol8_x86_64_appstream
	nspr-4.25.0-2.el8_2.x86_64.rpm	23128b211de9f175ea15190399acb1397ac8342d858581caadcd7e710a9c11b0	-	ol8_x86_64_appstream
	nspr-devel-4.25.0-2.el8_2.i686.rpm	bf781adc6a4890469e9e34af5ba3d01c42dd449958e88bf31d812225add1122d	-	ol8_x86_64_appstream
	nspr-devel-4.25.0-2.el8_2.x86_64.rpm	fafb542a56b09a9346553d1ac2f4612f339ec0ab608ecd2816aff8f5f80b9ac6	-	ol8_x86_64_appstream
	nss-3.53.1-11.el8_2.i686.rpm	61eeaf1eee82146fe6220ec6b5d9f78226871935b67320f1af75a1cb6d7611ee	-	ol8_x86_64_appstream
	nss-3.53.1-11.el8_2.x86_64.rpm	056a8883df85a4d388bb375e37325e8478da00a9eb2b3d787df8a3162ab89032	-	ol8_x86_64_appstream
	nss-devel-3.53.1-11.el8_2.i686.rpm	06a7d3a1a7ca8cbd7f842a09c00d9cdf7f98dc62031456a9deed2563c0003368	-	ol8_x86_64_appstream
	nss-devel-3.53.1-11.el8_2.x86_64.rpm	2acd00254069cfa4dca64493b65f093f1c0b603d2cbd552e85918293f200211d	-	ol8_x86_64_appstream
	nss-softokn-3.53.1-11.el8_2.i686.rpm	60884ead40d7e32674f695cb58ca8d00edc5def34278d89712eeea78a6e69ec8	-	ol8_x86_64_appstream
	nss-softokn-3.53.1-11.el8_2.x86_64.rpm	aac67ee2e131a6a8150df0d62f73847573ad8817e80cc2536ad1d6c7c4ebf21f	-	ol8_x86_64_appstream
	nss-softokn-devel-3.53.1-11.el8_2.i686.rpm	e7b85f001cbf219ebcf8d76ec1580c9e4188c3c41a4e59a0ed0ae9e165826f8d	-	ol8_x86_64_appstream
	nss-softokn-devel-3.53.1-11.el8_2.x86_64.rpm	b78a7307719780b0922a64268183f21fe54b8aa79cc00e9ee555f871af5894d5	-	ol8_x86_64_appstream
	nss-softokn-freebl-3.53.1-11.el8_2.i686.rpm	d40e7ac49c37fdf84e86e33a03a6a74e79f5fb4b30a19ad09258e191b77fc82a	-	ol8_x86_64_appstream
	nss-softokn-freebl-3.53.1-11.el8_2.x86_64.rpm	123a8e778fcfeff367a823e51723a0fd2d8c3e32a2485f17b994ce9ff7739128	-	ol8_x86_64_appstream
	nss-softokn-freebl-devel-3.53.1-11.el8_2.i686.rpm	171faf63fbd90372d60f13e78c1fdf3dd44c5e527bede3e5c5247283c0fb5adc	-	ol8_x86_64_appstream
	nss-softokn-freebl-devel-3.53.1-11.el8_2.x86_64.rpm	805c1efd3ca79e060bcc2084e20eccf750000bd5fc03ffd76f4760138b9c9dbd	-	ol8_x86_64_appstream
	nss-sysinit-3.53.1-11.el8_2.x86_64.rpm	6fd8fe933b9438d6a1f4cf28ea805b274ced6061fb99ad8b1083553410a721dd	-	ol8_x86_64_appstream
	nss-tools-3.53.1-11.el8_2.x86_64.rpm	b8b5fdb218f2c8ec0c27d14df7d5ef0700fff4de1da38345f0fa41d0c5762efd	-	ol8_x86_64_appstream
	nss-util-3.53.1-11.el8_2.i686.rpm	27090013c71c5659af62bf3df8b34f1bc9ea10a0d607dc642fbc7f96df290297	-	ol8_x86_64_appstream
	nss-util-3.53.1-11.el8_2.x86_64.rpm	608b8857f6090121425cbe71ec02730a06b0cae39cc037df2916df03b0bc73b3	-	ol8_x86_64_appstream
	nss-util-devel-3.53.1-11.el8_2.i686.rpm	ff2eeda2a19b1dc88218f6ce617b361bf4811a9e8b0ecb8ac9dda82f496ee20c	-	ol8_x86_64_appstream
	nss-util-devel-3.53.1-11.el8_2.x86_64.rpm	a7336e4daf4a2b95309969828c0bb68ffd303029ab402631c8f65dbf05e38961	-	ol8_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team