ELSA-2017-1364

ELSA-2017-1364 - nss security and bug fix update

Type:SECURITY
Severity:IMPORTANT
Release Date:2017-05-30

Description


[3.28.4-3.0.1]
- Added nss-vendor.patch to change vendor
- Temporarily disable some tests until expired PayPalEE.cert is renewed

[3.28.4-3]
- Fix zero-length record treatment for stream ciphers and SSLv2

[3.28.4-2]
- Include CKBI 2.14 and updated CA constraints from NSS 3.28.5


Related CVEs


CVE-2017-7502

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 6 (i386) nss-3.28.4-3.0.1.el6_9.src.rpm696c13cdfc7f3395d2f60a6546905a44-
nss-3.28.4-3.0.1.el6_9.i686.rpm47c8536ccc17d19094c6a902e2ac0366-
nss-devel-3.28.4-3.0.1.el6_9.i686.rpmcc4f90e9241c304b06ccaad083928b4a-
nss-pkcs11-devel-3.28.4-3.0.1.el6_9.i686.rpm4415a55813a600e3abea3d7e7be78b78-
nss-sysinit-3.28.4-3.0.1.el6_9.i686.rpm20b33a1733c488f73033ca65e95bc5b2-
nss-tools-3.28.4-3.0.1.el6_9.i686.rpm60eeb0207455ce2a49e7217bde5a6918-
Oracle Linux 6 (x86_64) nss-3.28.4-3.0.1.el6_9.src.rpm696c13cdfc7f3395d2f60a6546905a44-
nss-3.28.4-3.0.1.el6_9.i686.rpm47c8536ccc17d19094c6a902e2ac0366-
nss-3.28.4-3.0.1.el6_9.x86_64.rpm0f0ace547ae01502d72de62428c541ce-
nss-devel-3.28.4-3.0.1.el6_9.i686.rpmcc4f90e9241c304b06ccaad083928b4a-
nss-devel-3.28.4-3.0.1.el6_9.x86_64.rpm9bb2ea183fa9d32d2d70780a699a4d34-
nss-pkcs11-devel-3.28.4-3.0.1.el6_9.i686.rpm4415a55813a600e3abea3d7e7be78b78-
nss-pkcs11-devel-3.28.4-3.0.1.el6_9.x86_64.rpmeb9de771000d48bb808eacb4ba6a6c65-
nss-sysinit-3.28.4-3.0.1.el6_9.x86_64.rpm60c5956d75a259446378ca69fea263cf-
nss-tools-3.28.4-3.0.1.el6_9.x86_64.rpma5674e2d14e2e4d115ea5c32720bd651-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete