ELSA-2017-1364

ELSA-2017-1364 - nss security and bug fix update

Type:	SECURITY
Severity:	IMPORTANT
Release Date:	2017-05-30

Description

[3.28.4-3.0.1]
- Added nss-vendor.patch to change vendor
- Temporarily disable some tests until expired PayPalEE.cert is renewed

[3.28.4-3]
- Fix zero-length record treatment for stream ciphers and SSLv2

[3.28.4-2]
- Include CKBI 2.14 and updated CA constraints from NSS 3.28.5

Related CVEs

CVE-2017-7502

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory
Oracle Linux 6 (i386)	nss-3.28.4-3.0.1.el6_9.src.rpm	696c13cdfc7f3395d2f60a6546905a44	ELEA-2019-3280
	nss-3.28.4-3.0.1.el6_9.i686.rpm	47c8536ccc17d19094c6a902e2ac0366	ELEA-2019-3280
	nss-devel-3.28.4-3.0.1.el6_9.i686.rpm	cc4f90e9241c304b06ccaad083928b4a	ELEA-2019-3280
	nss-pkcs11-devel-3.28.4-3.0.1.el6_9.i686.rpm	4415a55813a600e3abea3d7e7be78b78	ELEA-2019-3280
	nss-sysinit-3.28.4-3.0.1.el6_9.i686.rpm	20b33a1733c488f73033ca65e95bc5b2	ELEA-2019-3280
	nss-tools-3.28.4-3.0.1.el6_9.i686.rpm	60eeb0207455ce2a49e7217bde5a6918	ELEA-2019-3280
Oracle Linux 6 (x86_64)	nss-3.28.4-3.0.1.el6_9.src.rpm	696c13cdfc7f3395d2f60a6546905a44	ELEA-2019-3280
	nss-3.28.4-3.0.1.el6_9.i686.rpm	47c8536ccc17d19094c6a902e2ac0366	ELEA-2019-3280
	nss-3.28.4-3.0.1.el6_9.x86_64.rpm	0f0ace547ae01502d72de62428c541ce	ELEA-2019-3280
	nss-devel-3.28.4-3.0.1.el6_9.i686.rpm	cc4f90e9241c304b06ccaad083928b4a	ELEA-2019-3280
	nss-devel-3.28.4-3.0.1.el6_9.x86_64.rpm	9bb2ea183fa9d32d2d70780a699a4d34	ELEA-2019-3280
	nss-pkcs11-devel-3.28.4-3.0.1.el6_9.i686.rpm	4415a55813a600e3abea3d7e7be78b78	ELEA-2019-3280
	nss-pkcs11-devel-3.28.4-3.0.1.el6_9.x86_64.rpm	eb9de771000d48bb808eacb4ba6a6c65	ELEA-2019-3280
	nss-sysinit-3.28.4-3.0.1.el6_9.x86_64.rpm	60c5956d75a259446378ca69fea263cf	ELEA-2019-3280
	nss-tools-3.28.4-3.0.1.el6_9.x86_64.rpm	a5674e2d14e2e4d115ea5c32720bd651	ELEA-2019-3280

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team