ELSA-2019-2237

ULN >
Oracle Linux Errata repository >
ELSA-2019-2237

ELSA-2019-2237 - nss, nss-softokn, nss-util, and nspr security, bug fix, and enhancement update

Type:	SECURITY
Severity:	MODERATE
Release Date:	2019-08-13

Description

nspr
[4.21.0-1]
- Rebase to NSPR 4.21

nss
[3.44.0-4]
- Fix certutil man page
- Fix extracting a public key from a private key for dh, ec, and dsa

[3.44.0-3]
- Disable TLS 1.3 under FIPS mode
- Disable RSASSA-PKCS1-v1_5 in TLS 1.3
- Fix post-handshake auth transcript calculation if
SSL_ENABLE_SESSION_TICKETS is set

[3.44.0-2]
- Skip sysinit gtests properly
- Fix shell syntax error in tests/ssl/ssl.sh
- Regenerate manual pages

[3.44.0-1]
- Rebase to NSS 3.44
- Restore fix-min-library-version-in-SSLVersionRange.patch to keep
SSL3 supported in the code level while it is disabled by policy
- Skip TLS 1.3 tests under FIPS mode

[3.43.0-9]
- Ignore system policy when running %check

[3.43.0-8]
- Fix policy string

[3.43.0-7]
- Dont override date in man-pages
- Revert the change to use XDG basedirs (mozilla#818686)
- Enable SSL2 compatible ClientHello by default
- Disable SSL3 and RC4 by default

[3.43.0-6]
- Make '-V ssl3:' option work with tools

[3.43.0-5]
- Fix regression in MD5 disablement

[3.43.0-4]
- add certutil documentation

[3.43.0-3]
- Restore complete removal of SSLv2
- Disable SSLv3
- Move signtool to unsupported directory

[3.43.0-2]
- Expand IPSEC usage to include ssl and email certs. Remove special
processing of the usage based on the critical flag

[3.43.0-1]
- Rebase to NSS 3.43

[3.36.0-8.1]
- move key on unwrap failure and retry.

[3.36.0-8]
- Update the cert verify code to allow a new ipsec usage and follow RFC 4945

nss-softokn
[3.44.0-5.0.1]
- Add fips140-2 DSA Known Answer Test fix [Orabug: 26679337]
- Add fips140-2 ECDSA/RSA/DSA Pairwise Consistency Test fix [Orabug: 26617814],
[Orabug: 26617879], [Orabug: 26617849]

[3.44.0-5]
- Add pub from priv mechanism

[3.44.0-4]
- Add ike mechanisms
- FIPS update

[3.44.0-3]
- Remove stray 'exit' in %prep

[3.44.0-2]
- Fix nss-softokn-fs-probe.patch to detect threshold correctly

[3.44.0-1]
- Rebase to NSS 3.44

[3.43.0-5]
- Restore nss-softokn-fs-probe.patch

[3.43.0-4]
- Enable iquote.patch

[3.43.0-2]
- Rebuild

nss-util
[3.44.0-3]
- Add pub from priv mechanism
- ike mechanisms should not overlap with JPAKE

[3.44.0-2]
- Add ike mechanisms

[3.44.0-1]
- Rebase to NSS 3.44

[3.43.0-1]
- Rebase to NSS 3.43

[3.36.0-2]
- Update the cert verify code to allow a new ipsec usage and follow RFC 4945

Related CVEs

CVE-2018-0495

CVE-2018-12404

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory

Oracle Linux 7 (aarch64)	nspr-4.21.0-1.el7.src.rpm	c136296393675b282e41c848d7db574b	ELSA-2020-4076
	nss-3.44.0-4.el7.src.rpm	6a8ea691db4e655797d55dadd9642e18	ELSA-2021-1384
	nss-softokn-3.44.0-5.0.1.el7.src.rpm	261c2ef82d647125d3f05d2bb72bdd8d	ELSA-2020-4076
	nss-util-3.44.0-3.el7.src.rpm	29cc2b5f9838b7bf9a67265b9dcf4087	ELSA-2020-4076
	nspr-4.21.0-1.el7.aarch64.rpm	9127fa548da95a84c2695583fe9a7ee6	ELSA-2020-4076
	nspr-devel-4.21.0-1.el7.aarch64.rpm	687d1142a2e8e4c1a976189f1a6cedf2	ELSA-2020-4076
	nss-3.44.0-4.el7.aarch64.rpm	0d1584c2707ff9b7f76e7dcb0444a3d9	ELSA-2021-1384
	nss-devel-3.44.0-4.el7.aarch64.rpm	72c44488f2b6cc41adc09bb8cc7f33f0	ELSA-2021-1384
	nss-pkcs11-devel-3.44.0-4.el7.aarch64.rpm	dbbb1701730dacd5ff3408019d8e4bae	ELSA-2021-1384
	nss-softokn-3.44.0-5.0.1.el7.aarch64.rpm	a71282e51184fad4a7f3f3048f0efdb8	ELSA-2020-4076
	nss-softokn-devel-3.44.0-5.0.1.el7.aarch64.rpm	c68bdc9cd65b6769dc6d7b9019f24654	ELSA-2020-4076
	nss-softokn-freebl-3.44.0-5.0.1.el7.aarch64.rpm	e7503d0d14f1d98fb519fb68bd4a9eef	ELSA-2020-4076
	nss-softokn-freebl-devel-3.44.0-5.0.1.el7.aarch64.rpm	bef693262b5a4ac9fc5b2fb69edea84d	ELSA-2020-4076
	nss-sysinit-3.44.0-4.el7.aarch64.rpm	bbb0cea3ecc3941aa339d9e98b29f8ca	ELSA-2021-1384
	nss-tools-3.44.0-4.el7.aarch64.rpm	3fc6282d735cddccdaefb344f8494ad1	ELSA-2021-1384
	nss-util-3.44.0-3.el7.aarch64.rpm	6b21f5b18e79ffeef76e1068cc35ca59	ELSA-2020-4076
	nss-util-devel-3.44.0-3.el7.aarch64.rpm	21c5ce85ccbf96c46f0c7b5c591840c6	ELSA-2020-4076

Oracle Linux 7 (x86_64)	nspr-4.21.0-1.el7.src.rpm	c136296393675b282e41c848d7db574b	ELSA-2020-4076
	nss-3.44.0-4.el7.src.rpm	6a8ea691db4e655797d55dadd9642e18	ELSA-2021-1384
	nss-softokn-3.44.0-5.0.1.el7.src.rpm	261c2ef82d647125d3f05d2bb72bdd8d	ELSA-2020-4076
	nss-util-3.44.0-3.el7.src.rpm	29cc2b5f9838b7bf9a67265b9dcf4087	ELSA-2020-4076
	nspr-4.21.0-1.el7.i686.rpm	6356340ffb8a7eda018b6b1fa183554f	ELSA-2020-4076
	nspr-4.21.0-1.el7.x86_64.rpm	4de3770ac960f8eea5342fa1dd182356	ELSA-2020-4076
	nspr-devel-4.21.0-1.el7.i686.rpm	975c59d52c43a838102b11c0efaa684f	ELSA-2020-4076
	nspr-devel-4.21.0-1.el7.x86_64.rpm	c54120753755989c8b76f3983aaf6a2a	ELSA-2020-4076
	nss-3.44.0-4.el7.i686.rpm	cae979f244ec973ce6b52a00f4fdc0ba	ELSA-2021-1384
	nss-3.44.0-4.el7.x86_64.rpm	bab9b507b2fc65d22fd72aab14222515	ELSA-2021-1384
	nss-devel-3.44.0-4.el7.i686.rpm	c14d7db655eb32faa5ed119dc2fc3c68	ELSA-2021-1384
	nss-devel-3.44.0-4.el7.x86_64.rpm	b46a01c44724f69f6e2269dc2ed7b2f8	ELSA-2021-1384
	nss-pkcs11-devel-3.44.0-4.el7.i686.rpm	dcbdc7a33bad7ac92cdcf11a0e945e12	ELSA-2021-1384
	nss-pkcs11-devel-3.44.0-4.el7.x86_64.rpm	2849d414755108beac3b4f59dc323f9d	ELSA-2021-1384
	nss-softokn-3.44.0-5.0.1.el7.i686.rpm	09e01a62305b70dfe48710af57acc36b	ELSA-2020-4076
	nss-softokn-3.44.0-5.0.1.el7.x86_64.rpm	d99e0cad79006b95a0d4f84d95bb16cb	ELSA-2020-4076
	nss-softokn-devel-3.44.0-5.0.1.el7.i686.rpm	3a49d16d05d33b32b3e43c49f0854186	ELSA-2020-4076
	nss-softokn-devel-3.44.0-5.0.1.el7.x86_64.rpm	80db5b9272dde1b45178c9beda66326b	ELSA-2020-4076
	nss-softokn-freebl-3.44.0-5.0.1.el7.i686.rpm	32a7641683c043e2e17278636c2b5088	ELSA-2020-4076
	nss-softokn-freebl-3.44.0-5.0.1.el7.x86_64.rpm	79ad12fe769a003f08eb0291786a07dc	ELSA-2020-4076
	nss-softokn-freebl-devel-3.44.0-5.0.1.el7.i686.rpm	10db81d9cad1cb4f11796a1a48b0d901	ELSA-2020-4076
	nss-softokn-freebl-devel-3.44.0-5.0.1.el7.x86_64.rpm	f2d092e747e571f6829617bb8c837f8d	ELSA-2020-4076
	nss-sysinit-3.44.0-4.el7.x86_64.rpm	544d4a5fbaee117407df678d39070a9e	ELSA-2021-1384
	nss-tools-3.44.0-4.el7.x86_64.rpm	dfe5d39605d6da20d93087cc1015970c	ELSA-2021-1384
	nss-util-3.44.0-3.el7.i686.rpm	0d98f0db06c9cf2591883e4e0e33122a	ELSA-2020-4076
	nss-util-3.44.0-3.el7.x86_64.rpm	f4c45231a728a644aac60b834311e8b0	ELSA-2020-4076
	nss-util-devel-3.44.0-3.el7.i686.rpm	880d1229aa45dcf992a2a8293b77a094	ELSA-2020-4076
	nss-util-devel-3.44.0-3.el7.x86_64.rpm	191b629a5b0fb9544b69557059d81012	ELSA-2020-4076

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691