ELEA-2019-3280

ELEA-2019-3280 - nss, nss-softokn, nss-util and nspr bug fix and enhancement update

Type:	ENHANCEMENT
Severity:	NA
Release Date:	2019-11-04

Description

nspr
[4.21.0-1]
- Rebase to NSPR 4.21

nss
[3.44.0-7.0.1]
- Added nss-vendor.patch to change vendor
- Temporarily disable some tests until expired PayPalEE.cert is renewed

[3.44.0-7]
- Add back missing Mozilla Policy

[3.44.0-6]
- Fix gtest failure detection

[3.44.0-5]
- Turn off cp TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 by default

[3.44.0-4]
- Fix cipher order
- fix broken gtests

[3.44.0-3]
- fix problems found by qe:
- AC13: SSL3 'disabled'
- AC26: Chacha20 and TLS 1.3 ciphers should be prioritized
- SHA-384 PRF => *_256_GCM_SHA384 ciphers should be reenabled for consistency
- AC28: nss-policy-check is missing from packages and /usr/local/bin:/bin:/usr/bin
- extra: apostrophes in certutil manpage got mangled

[3.44.0-2]
- restore Conflicts: with curl

[3.44.0-1]
- Rebase to 3.44.0 with critical fixes

nss-softokn
[3.44.0-5.0.1]
- Add fips140-2 DSA Known Answer Test fix [Orabug 26696773]
- Add fips140-2 ECDSA/RSA/DSA Pairwise Consistency Test fix [Orabug 26617866],
[Orabug 26617833], [Orabug 26617780]

[3.44.0-5]
- include sqlite3_open_v2 in the patch

[3.44.0-4]
- actually turn on the old sqlite patch

[3.44.0-3]
- add back old sqlite patch

[3.44.0-2]
- add back add-relro patch

[3.44.0-1]
- Rebase for Firefox
- Resolves Bug 1743628

nss-util
[3.44.0-1]
- Rebase to NSS 3.44.0 for Firefox 68

Updated Packages

Release/Architecture

Filename

MD5sum

Superseded By Advisory

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team