ELSA-2020-4076

ULN >
Oracle Linux Errata repository >
ELSA-2020-4076

ELSA-2020-4076 - nss and nspr security, bug fix, and enhancement update

Type:	SECURITY
Severity:	MODERATE
Release Date:	2020-10-08

Description

nspr
[4.25.0-2]
- Rebuild to fix wrong dist tag

[4.25.0-1]
- Rebase to NSPR 4.25

nss
[3.53.1-3]
- Disable dh timing test because it's unreliable on s390 (from Bob Relyea)
- Explicitly enable upgradedb/sharedb test cycles

[3.53.1-2]
- Disable TLS 1.3 by default

[3.53.1-1]
- Rebase to NSS 3.53.1

[3.44.0-8]
- Increase timeout on ssl_gtest so that slow platforms can complete when
running on a busy system.

nss-softokn
[3.53.1-6.0.1]
- Add fips140-2 DSA Known Answer Test fix [Orabug: 26679337]
- Add fips140-2 ECDSA/RSA/DSA Pairwise Consistency Test fix [Orabug: 26617814],
[Orabug: 26617879], [Orabug: 26617849]

[3.53.1-6]
- turn of ALTIVEC instruction for powerpc because they require
power8 and we need to support power7 on RHEL7 still.
- Fix typo in measure.
- Make sure only 2048 and greater primes are used in FIPS mode
for dh.

[3.53.1-5]
- Fix the patch application in the previous change

[3.53.1-4]
- Fix glibc regression in the rebase; run RNG self-tests only if NSPR is linked

[3.53.1-3]
- include patches for CVE-2020-6829, CVE-2020-12400,
and CVE-2020-12401 from upstream (ECC constant time issues).
- include patches for CVE-2020-12403 from upstream
(CHACHA issues).
- include self-tests for kdfs and cmac.

[3.53.1-2]
- Install cmac.h required by blapi.h (#1764513)

[3.53.1-1]
- Rebase to NSS 3.53.1

nss-util
[3.53.1-1]
- Rebase to NSS 3.53.1

Related CVEs

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory

Oracle Linux 7 (aarch64)	nspr-4.25.0-2.el7_9.src.rpm	6942dcecfd72d48cc37afb1258d1f5ec	-
	nss-3.53.1-3.el7_9.src.rpm	171b9fb061fa1ea5d129d4d341f28f7c	ELSA-2021-1384
	nss-softokn-3.53.1-6.0.1.el7_9.src.rpm	c38b34e07fe2fd87d45905b6921829be	-
	nss-util-3.53.1-1.el7_9.src.rpm	abb6e037402855a43e7729a1285d396a	-
	nspr-4.25.0-2.el7_9.aarch64.rpm	4b66f4b17d6b1e77b9a4dd15f3bcedf7	-
	nspr-devel-4.25.0-2.el7_9.aarch64.rpm	d93b8f93fada95c13c868af4d51c5bce	-
	nss-3.53.1-3.el7_9.aarch64.rpm	678a477e57e78ae592a836c2e386fe1d	ELSA-2021-1384
	nss-devel-3.53.1-3.el7_9.aarch64.rpm	0b1c345562a367d684453788e6568640	ELSA-2021-1384
	nss-pkcs11-devel-3.53.1-3.el7_9.aarch64.rpm	c4c30859d01c5928b3bf712c0bdc9e0e	ELSA-2021-1384
	nss-softokn-3.53.1-6.0.1.el7_9.aarch64.rpm	6e39c44ce07dcff70c6c4e289a8b6c39	-
	nss-softokn-devel-3.53.1-6.0.1.el7_9.aarch64.rpm	a9daef0c7647f4344d8e5b768f72806f	-
	nss-softokn-freebl-3.53.1-6.0.1.el7_9.aarch64.rpm	3acdddd0bacf6270523db14377d68d2b	-
	nss-softokn-freebl-devel-3.53.1-6.0.1.el7_9.aarch64.rpm	26a1e1264680ab4b2e99ca67e431d236	-
	nss-sysinit-3.53.1-3.el7_9.aarch64.rpm	8f3c3db6678558c2648d5490a85c9900	ELSA-2021-1384
	nss-tools-3.53.1-3.el7_9.aarch64.rpm	5fac73208cd6cd1e3c2a4d6bc5b06a5f	ELSA-2021-1384
	nss-util-3.53.1-1.el7_9.aarch64.rpm	e4fbf4bcf3618e845dde5c3f433b00b7	-
	nss-util-devel-3.53.1-1.el7_9.aarch64.rpm	97a008249bfc2569154a980ff7cc993e	-

Oracle Linux 7 (x86_64)	nspr-4.25.0-2.el7_9.src.rpm	6942dcecfd72d48cc37afb1258d1f5ec	-
	nss-3.53.1-3.el7_9.src.rpm	171b9fb061fa1ea5d129d4d341f28f7c	ELSA-2021-1384
	nss-softokn-3.53.1-6.0.1.el7_9.src.rpm	c38b34e07fe2fd87d45905b6921829be	-
	nss-util-3.53.1-1.el7_9.src.rpm	abb6e037402855a43e7729a1285d396a	-
	nspr-4.25.0-2.el7_9.i686.rpm	001f31b461bb4ab981cf8fbde3ca87c5	-
	nspr-4.25.0-2.el7_9.x86_64.rpm	8684c1e0b68a57363c4cc58491b38ead	-
	nspr-devel-4.25.0-2.el7_9.i686.rpm	8db02d12e6f5e9eee98122e10fb87cb0	-
	nspr-devel-4.25.0-2.el7_9.x86_64.rpm	b75b640809a3a023d9ba1901cd908490	-
	nss-3.53.1-3.el7_9.i686.rpm	c8d06cd047ed0100e9e16bd132715702	ELSA-2021-1384
	nss-3.53.1-3.el7_9.x86_64.rpm	44daf683fd68a52bc45e658ef935c2a5	ELSA-2021-1384
	nss-devel-3.53.1-3.el7_9.i686.rpm	0246a523a6a2a25509c8aa71b6774665	ELSA-2021-1384
	nss-devel-3.53.1-3.el7_9.x86_64.rpm	8f442735ee39ab242f8937be3ecd4325	ELSA-2021-1384
	nss-pkcs11-devel-3.53.1-3.el7_9.i686.rpm	7902350bc9f19a8d64ec9dc54ed365c2	ELSA-2021-1384
	nss-pkcs11-devel-3.53.1-3.el7_9.x86_64.rpm	781a089f1939501d74ba565d5804782b	ELSA-2021-1384
	nss-softokn-3.53.1-6.0.1.el7_9.i686.rpm	e988828041775f4f9d7bc5e503e83561	-
	nss-softokn-3.53.1-6.0.1.el7_9.x86_64.rpm	4a81cdac6bd59fe6a0a5d6a91ce4afdc	-
	nss-softokn-devel-3.53.1-6.0.1.el7_9.i686.rpm	58cd4ca95ef7349e71b3014a6e832211	-
	nss-softokn-devel-3.53.1-6.0.1.el7_9.x86_64.rpm	962d651febbc5c893d3675f432cb7e15	-
	nss-softokn-freebl-3.53.1-6.0.1.el7_9.i686.rpm	e9ad84ff6b246e89bc5c44d5a8442434	-
	nss-softokn-freebl-3.53.1-6.0.1.el7_9.x86_64.rpm	64c3ef859440701ee21876d01d916128	-
	nss-softokn-freebl-devel-3.53.1-6.0.1.el7_9.i686.rpm	6e7ce83e561d8c44096093031f7a0c5f	-
	nss-softokn-freebl-devel-3.53.1-6.0.1.el7_9.x86_64.rpm	b088c7d5e0cb462865f2e62262014e9b	-
	nss-sysinit-3.53.1-3.el7_9.x86_64.rpm	718e92dc3e82dae099a5be4cfe87f070	ELSA-2021-1384
	nss-tools-3.53.1-3.el7_9.x86_64.rpm	7ed8cbacaba58dba69cd7cb55479cef5	ELSA-2021-1384
	nss-util-3.53.1-1.el7_9.i686.rpm	2035ff3ac36101d768e5e2a01a5c05cd	-
	nss-util-3.53.1-1.el7_9.x86_64.rpm	ccb5af9c46e53dbfa6adca91f349e877	-
	nss-util-devel-3.53.1-1.el7_9.i686.rpm	43c6450ebc3d2794e7e22476db271f55	-
	nss-util-devel-3.53.1-1.el7_9.x86_64.rpm	d965f04e00e96338e27ff5fa3836842c	-

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691