ELEA-2017-0671

ELEA-2017-0671 - nspr and nss bug fix update

Type:ENHANCEMENT
Severity:NA
Release Date:2017-03-27

Description


nspr
[4.13.1-1]
- Rebase to NSPR 4.13.1

[4.13.0-1]
- Rebase to NSPR 4.13

[4.11.0-1]
- Rebase to NSPR 4.11
- Resolves: Bug 1297891 - Rebase RHEL 6.8 to NSPR 4.11 in preparation for Firefox 45

nss
[3.27.1-13.0.1]
- Added nss-vendor.patch to change vendor
- Temporarily disable some tests until expired PayPalEE.cert is renewed

[3.27.1-13]
- Update expired PayPalEE.cert

[3.27.1-12]
- Disable unsupported test cases in ssl_gtests

[3.27.1-11]
- Adjust the sslstress.txt filename so that it matches with the
disableSSL2tests patch ported from RHEL 7
- Exclude SHA384 and CHACHA20_POLY1305 ciphersuites from stress tests
- Don't add gtests and ssl_gtests to nss_tests, unless gtests are enabled

[3.27.1-10]
- Add patch to fix SSL CA name leaks, taken from NSS 3.27.2 release
- Add patch to fix bash syntax error in tests/ssl.sh
- Add patch to remove duplicate ciphersuites entries in sslinfo.c
- Add patch to abort selfserv/strsclnt/tstclnt on non-parsable version range
- Build with support for SSLKEYLOGFILE

[3.27.1-9]
- Update fix_multiple_open patch to fix regression in openldap client
- Remove pk11_genobj_leak patch, which caused crash with Firefox
- Add comment in the policy file to preserve the last empty line
- Disable SHA384 ciphersuites when CKM_TLS12_KEY_AND_MAC_DERIVE is not
provided by softoken; this superseds check_hash_impl patch

[3.27.1-8]
- Fix problem in check_hash_impl patch

[3.27.1-7]
- Add patch to check if hash algorithms are backed by a token
- Add patch to disable TLS_ECDHE_{RSA,ECDSA}_WITH_AES_128_CBC_SHA256,
which have never enabled in the past

[3.27.1-6]
- Add upstream patch to fix a crash. Mozilla #1315936

[3.27.1-5]
- Disable the use of RSA-PSS with SSL/TLS. #1390161

[3.27.1-4]
- Use updated upstream patch for RH bug 1387811

nss-util
[3.27.1-3]
- Tolerate policy file without last empty line

[3.27.1-2]
- Add missing source files

[3.27.1-1]
- Rebase to NSS 3.26.0
- Remove upstreamed patch for CVE-2016-1950
- Remove p-disable-md5-590364-reversed.patch for bug 1335915




Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 6 (i386) nspr-4.13.1-1.el6.src.rpmdd69942264b6526cf6ed431401524962-
nss-3.27.1-13.0.1.el6.src.rpmb4e5b46d2fc8a422ce3e5939fdfc5e4dELSA-2017-1364
nss-util-3.27.1-3.el6.src.rpmd7cfd141f1391b53bfdaa45c1bd23c07ELSA-2017-1100
nspr-4.13.1-1.el6.i686.rpm269727b03da6eeac3042bba7db17aa32-
nspr-devel-4.13.1-1.el6.i686.rpm4c9fb960e162d9e796639fd230efcc47-
nss-3.27.1-13.0.1.el6.i686.rpmdf7a74e4891f63066c327f877d639bf7ELSA-2017-1364
nss-devel-3.27.1-13.0.1.el6.i686.rpmf74b00bb5790a737236323af9741dc15ELSA-2017-1364
nss-pkcs11-devel-3.27.1-13.0.1.el6.i686.rpm702ed563de65a9e5154a6fa0ea78f808ELSA-2017-1364
nss-sysinit-3.27.1-13.0.1.el6.i686.rpm62101144143a2932ed7c17ca7ebc61bfELSA-2017-1364
nss-tools-3.27.1-13.0.1.el6.i686.rpmc8bc642bd3914baad851c0f81a5517dbELSA-2017-1364
nss-util-3.27.1-3.el6.i686.rpm05fe622c10899dd28a2611c54794f4c3ELSA-2017-1100
nss-util-devel-3.27.1-3.el6.i686.rpmea0eafd1fb7b133059ab92d2ce787444ELSA-2017-1100
Oracle Linux 6 (x86_64) nspr-4.13.1-1.el6.src.rpmdd69942264b6526cf6ed431401524962-
nss-3.27.1-13.0.1.el6.src.rpmb4e5b46d2fc8a422ce3e5939fdfc5e4dELSA-2017-1364
nss-util-3.27.1-3.el6.src.rpmd7cfd141f1391b53bfdaa45c1bd23c07ELSA-2017-1100
nspr-4.13.1-1.el6.i686.rpm269727b03da6eeac3042bba7db17aa32-
nspr-4.13.1-1.el6.x86_64.rpm400aaf1a68beafb0f0d6ff85c8cf309e-
nspr-devel-4.13.1-1.el6.i686.rpm4c9fb960e162d9e796639fd230efcc47-
nspr-devel-4.13.1-1.el6.x86_64.rpm3076f61f26c3f517def72d2f489037ea-
nss-3.27.1-13.0.1.el6.i686.rpmdf7a74e4891f63066c327f877d639bf7ELSA-2017-1364
nss-3.27.1-13.0.1.el6.x86_64.rpm3b17bb8573413486e2fd3971736ef803ELSA-2017-1364
nss-devel-3.27.1-13.0.1.el6.i686.rpmf74b00bb5790a737236323af9741dc15ELSA-2017-1364
nss-devel-3.27.1-13.0.1.el6.x86_64.rpm65a5550c29e61099125e201066f39da4ELSA-2017-1364
nss-pkcs11-devel-3.27.1-13.0.1.el6.i686.rpm702ed563de65a9e5154a6fa0ea78f808ELSA-2017-1364
nss-pkcs11-devel-3.27.1-13.0.1.el6.x86_64.rpmdd2cdc43fd00321457e12f0304fb0a2aELSA-2017-1364
nss-sysinit-3.27.1-13.0.1.el6.x86_64.rpm40373c7e3baae5252ceedd219b446c8bELSA-2017-1364
nss-tools-3.27.1-13.0.1.el6.x86_64.rpm1f7186ed61b3971d414c513b9479e3c5ELSA-2017-1364
nss-util-3.27.1-3.el6.i686.rpm05fe622c10899dd28a2611c54794f4c3ELSA-2017-1100
nss-util-3.27.1-3.el6.x86_64.rpm783fdb141b0f3fe836633b1e73d83b03ELSA-2017-1100
nss-util-devel-3.27.1-3.el6.i686.rpmea0eafd1fb7b133059ab92d2ce787444ELSA-2017-1100
nss-util-devel-3.27.1-3.el6.x86_64.rpm18441c556bd47b2dd8ce7062be248556ELSA-2017-1100



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete