ELSA-2024-0108

ELSA-2024-0108 - nss security update

Type:	SECURITY
Severity:	MODERATE
Release Date:	2024-01-10

Description

[3.90.0-4]
- CVE-2023-5388
nss: timing attack against RSA decryption.
Make the final blinding multmod constant time.

Related CVEs

CVE-2023-5388

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory	Channel Label
Oracle Linux 9 (aarch64)	nss-3.90.0-4.el9_3.src.rpm	59612803cf7aad55a5dcbf35c6441793	-	ol9_aarch64_appstream
	nspr-4.35.0-4.el9_3.aarch64.rpm	63a0b85c9bdb6e51d1dec9aaaac0e30a	-	ol9_aarch64_appstream
	nspr-devel-4.35.0-4.el9_3.aarch64.rpm	20612f82bbdc6e6d90b5879c46a73623	-	ol9_aarch64_appstream
	nss-3.90.0-4.el9_3.aarch64.rpm	28852355aa3dccc662efc635d8110b42	-	ol9_aarch64_appstream
	nss-devel-3.90.0-4.el9_3.aarch64.rpm	998ea91e9ca131e1f603eda45106314e	-	ol9_aarch64_appstream
	nss-softokn-3.90.0-4.el9_3.aarch64.rpm	595c8987579cdc5ff7c20088604ffbc5	-	ol9_aarch64_appstream
	nss-softokn-devel-3.90.0-4.el9_3.aarch64.rpm	beb4768dc82393c3d6851bc1ff8b9ed1	-	ol9_aarch64_appstream
	nss-softokn-freebl-3.90.0-4.el9_3.aarch64.rpm	5462a09a43fbde87e4f5a94f4e7d71c1	-	ol9_aarch64_appstream
	nss-softokn-freebl-devel-3.90.0-4.el9_3.aarch64.rpm	006791fdbb531c97fc42c1c0d1938636	-	ol9_aarch64_appstream
	nss-sysinit-3.90.0-4.el9_3.aarch64.rpm	d7861de4178daef0e50f113e3cd2cb39	-	ol9_aarch64_appstream
	nss-tools-3.90.0-4.el9_3.aarch64.rpm	4a2c1e98e8fb6d0e8f869ba7863415a2	-	ol9_aarch64_appstream
	nss-util-3.90.0-4.el9_3.aarch64.rpm	f23032287b2ad0a3d8c25018de01d730	-	ol9_aarch64_appstream
	nss-util-devel-3.90.0-4.el9_3.aarch64.rpm	a6cd498e6e5aaed96d6e150f81aea545	-	ol9_aarch64_appstream
Oracle Linux 9 (x86_64)	nss-3.90.0-4.el9_3.src.rpm	59612803cf7aad55a5dcbf35c6441793	-	ol9_x86_64_appstream
	nspr-4.35.0-4.el9_3.i686.rpm	9854573a69decd401f332a6e15721d23	-	ol9_x86_64_appstream
	nspr-4.35.0-4.el9_3.x86_64.rpm	d056098f5f738314a0a8f37314521467	-	ol9_x86_64_appstream
	nspr-devel-4.35.0-4.el9_3.i686.rpm	fb8ff57b17d1f2d0c0acfebc16d49aa1	-	ol9_x86_64_appstream
	nspr-devel-4.35.0-4.el9_3.x86_64.rpm	82e4a6c00a1e1cd6fe811f62c05891eb	-	ol9_x86_64_appstream
	nss-3.90.0-4.el9_3.i686.rpm	b81ba53aea0a53c81125ef98268d1d12	-	ol9_x86_64_appstream
	nss-3.90.0-4.el9_3.x86_64.rpm	a0e2eabd2edf409691aa59907402b2bf	-	ol9_x86_64_appstream
	nss-devel-3.90.0-4.el9_3.i686.rpm	1e16368e3ed2b730e3afa1fc2695e023	-	ol9_x86_64_appstream
	nss-devel-3.90.0-4.el9_3.x86_64.rpm	250abecc1b9f796ec2be9e50fe1ee856	-	ol9_x86_64_appstream
	nss-softokn-3.90.0-4.el9_3.i686.rpm	cfdbfaa11fc6389b806b3565049d28e2	-	ol9_x86_64_appstream
	nss-softokn-3.90.0-4.el9_3.x86_64.rpm	c2e9222d411fd5378251a1e7b9fa0135	-	ol9_x86_64_appstream
	nss-softokn-devel-3.90.0-4.el9_3.i686.rpm	808aa95f26961fa429b69446575aa80d	-	ol9_x86_64_appstream
	nss-softokn-devel-3.90.0-4.el9_3.x86_64.rpm	1f1346349c97898d4f3be842253853fd	-	ol9_x86_64_appstream
	nss-softokn-freebl-3.90.0-4.el9_3.i686.rpm	ef4ee323c02324bdeb3a52ad3a3313c5	-	ol9_x86_64_appstream
	nss-softokn-freebl-3.90.0-4.el9_3.x86_64.rpm	1643e33f30c4647a079dcc8e66b02b15	-	ol9_x86_64_appstream
	nss-softokn-freebl-devel-3.90.0-4.el9_3.i686.rpm	00d49ceb81ed52ae31b57751d0b8eec6	-	ol9_x86_64_appstream
	nss-softokn-freebl-devel-3.90.0-4.el9_3.x86_64.rpm	9364c18e784c282fc315cab8c2484b13	-	ol9_x86_64_appstream
	nss-sysinit-3.90.0-4.el9_3.x86_64.rpm	005ad66e9e6a2ee3a18f578c805693f2	-	ol9_x86_64_appstream
	nss-tools-3.90.0-4.el9_3.x86_64.rpm	a6039b6fef5865d7352aa7e092b76d3b	-	ol9_x86_64_appstream
	nss-util-3.90.0-4.el9_3.i686.rpm	def3056046eaa4772eb8ccfa35564663	-	ol9_x86_64_appstream
	nss-util-3.90.0-4.el9_3.x86_64.rpm	dc34a03e397917356e85164b10d95a5a	-	ol9_x86_64_appstream
	nss-util-devel-3.90.0-4.el9_3.i686.rpm	557e301a51b08e0ea6af7594ae15d3fa	-	ol9_x86_64_appstream
	nss-util-devel-3.90.0-4.el9_3.x86_64.rpm	a07d1d108a2022833d5f5f68ac5e9795	-	ol9_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team