ELSA-2020-4076

ELSA-2020-4076 - nss and nspr security, bug fix, and enhancement update

Type:SECURITY
Severity:MODERATE
Release Date:2020-10-08

Description


nspr
[4.25.0-2]
- Rebuild to fix wrong dist tag

[4.25.0-1]
- Rebase to NSPR 4.25

nss
[3.53.1-3]
- Disable dh timing test because it's unreliable on s390 (from Bob Relyea)
- Explicitly enable upgradedb/sharedb test cycles

[3.53.1-2]
- Disable TLS 1.3 by default

[3.53.1-1]
- Rebase to NSS 3.53.1

[3.44.0-8]
- Increase timeout on ssl_gtest so that slow platforms can complete when
running on a busy system.

nss-softokn
[3.53.1-6.0.1]
- Add fips140-2 DSA Known Answer Test fix [Orabug: 26679337]
- Add fips140-2 ECDSA/RSA/DSA Pairwise Consistency Test fix [Orabug: 26617814],
[Orabug: 26617879], [Orabug: 26617849]

[3.53.1-6]
- turn of ALTIVEC instruction for powerpc because they require
power8 and we need to support power7 on RHEL7 still.
- Fix typo in measure.
- Make sure only 2048 and greater primes are used in FIPS mode
for dh.

[3.53.1-5]
- Fix the patch application in the previous change

[3.53.1-4]
- Fix glibc regression in the rebase; run RNG self-tests only if NSPR is linked

[3.53.1-3]
- include patches for CVE-2020-6829, CVE-2020-12400,
and CVE-2020-12401 from upstream (ECC constant time issues).
- include patches for CVE-2020-12403 from upstream
(CHACHA issues).
- include self-tests for kdfs and cmac.

[3.53.1-2]
- Install cmac.h required by blapi.h (#1764513)

[3.53.1-1]
- Rebase to NSS 3.53.1

nss-util
[3.53.1-1]
- Rebase to NSS 3.53.1


Related CVEs


CVE-2019-11719
CVE-2019-11727
CVE-2019-11756
CVE-2019-17006
CVE-2019-17023
CVE-2020-12402
CVE-2020-12403
CVE-2020-6829
CVE-2020-12400
CVE-2020-12401

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 7 (aarch64) nspr-4.25.0-2.el7_9.src.rpm6942dcecfd72d48cc37afb1258d1f5ec-
nss-3.53.1-3.el7_9.src.rpm171b9fb061fa1ea5d129d4d341f28f7cELSA-2021-1384
nss-softokn-3.53.1-6.0.1.el7_9.src.rpmc38b34e07fe2fd87d45905b6921829be-
nss-util-3.53.1-1.el7_9.src.rpmabb6e037402855a43e7729a1285d396a-
nspr-4.25.0-2.el7_9.aarch64.rpm4b66f4b17d6b1e77b9a4dd15f3bcedf7-
nspr-devel-4.25.0-2.el7_9.aarch64.rpmd93b8f93fada95c13c868af4d51c5bce-
nss-3.53.1-3.el7_9.aarch64.rpm678a477e57e78ae592a836c2e386fe1dELSA-2021-1384
nss-devel-3.53.1-3.el7_9.aarch64.rpm0b1c345562a367d684453788e6568640ELSA-2021-1384
nss-pkcs11-devel-3.53.1-3.el7_9.aarch64.rpmc4c30859d01c5928b3bf712c0bdc9e0eELSA-2021-1384
nss-softokn-3.53.1-6.0.1.el7_9.aarch64.rpm6e39c44ce07dcff70c6c4e289a8b6c39-
nss-softokn-devel-3.53.1-6.0.1.el7_9.aarch64.rpma9daef0c7647f4344d8e5b768f72806f-
nss-softokn-freebl-3.53.1-6.0.1.el7_9.aarch64.rpm3acdddd0bacf6270523db14377d68d2b-
nss-softokn-freebl-devel-3.53.1-6.0.1.el7_9.aarch64.rpm26a1e1264680ab4b2e99ca67e431d236-
nss-sysinit-3.53.1-3.el7_9.aarch64.rpm8f3c3db6678558c2648d5490a85c9900ELSA-2021-1384
nss-tools-3.53.1-3.el7_9.aarch64.rpm5fac73208cd6cd1e3c2a4d6bc5b06a5fELSA-2021-1384
nss-util-3.53.1-1.el7_9.aarch64.rpme4fbf4bcf3618e845dde5c3f433b00b7-
nss-util-devel-3.53.1-1.el7_9.aarch64.rpm97a008249bfc2569154a980ff7cc993e-
Oracle Linux 7 (x86_64) nspr-4.25.0-2.el7_9.src.rpm6942dcecfd72d48cc37afb1258d1f5ec-
nss-3.53.1-3.el7_9.src.rpm171b9fb061fa1ea5d129d4d341f28f7cELSA-2021-1384
nss-softokn-3.53.1-6.0.1.el7_9.src.rpmc38b34e07fe2fd87d45905b6921829be-
nss-util-3.53.1-1.el7_9.src.rpmabb6e037402855a43e7729a1285d396a-
nspr-4.25.0-2.el7_9.i686.rpm001f31b461bb4ab981cf8fbde3ca87c5-
nspr-4.25.0-2.el7_9.x86_64.rpm8684c1e0b68a57363c4cc58491b38ead-
nspr-devel-4.25.0-2.el7_9.i686.rpm8db02d12e6f5e9eee98122e10fb87cb0-
nspr-devel-4.25.0-2.el7_9.x86_64.rpmb75b640809a3a023d9ba1901cd908490-
nss-3.53.1-3.el7_9.i686.rpmc8d06cd047ed0100e9e16bd132715702ELSA-2021-1384
nss-3.53.1-3.el7_9.x86_64.rpm44daf683fd68a52bc45e658ef935c2a5ELSA-2021-1384
nss-devel-3.53.1-3.el7_9.i686.rpm0246a523a6a2a25509c8aa71b6774665ELSA-2021-1384
nss-devel-3.53.1-3.el7_9.x86_64.rpm8f442735ee39ab242f8937be3ecd4325ELSA-2021-1384
nss-pkcs11-devel-3.53.1-3.el7_9.i686.rpm7902350bc9f19a8d64ec9dc54ed365c2ELSA-2021-1384
nss-pkcs11-devel-3.53.1-3.el7_9.x86_64.rpm781a089f1939501d74ba565d5804782bELSA-2021-1384
nss-softokn-3.53.1-6.0.1.el7_9.i686.rpme988828041775f4f9d7bc5e503e83561-
nss-softokn-3.53.1-6.0.1.el7_9.x86_64.rpm4a81cdac6bd59fe6a0a5d6a91ce4afdc-
nss-softokn-devel-3.53.1-6.0.1.el7_9.i686.rpm58cd4ca95ef7349e71b3014a6e832211-
nss-softokn-devel-3.53.1-6.0.1.el7_9.x86_64.rpm962d651febbc5c893d3675f432cb7e15-
nss-softokn-freebl-3.53.1-6.0.1.el7_9.i686.rpme9ad84ff6b246e89bc5c44d5a8442434-
nss-softokn-freebl-3.53.1-6.0.1.el7_9.x86_64.rpm64c3ef859440701ee21876d01d916128-
nss-softokn-freebl-devel-3.53.1-6.0.1.el7_9.i686.rpm6e7ce83e561d8c44096093031f7a0c5f-
nss-softokn-freebl-devel-3.53.1-6.0.1.el7_9.x86_64.rpmb088c7d5e0cb462865f2e62262014e9b-
nss-sysinit-3.53.1-3.el7_9.x86_64.rpm718e92dc3e82dae099a5be4cfe87f070ELSA-2021-1384
nss-tools-3.53.1-3.el7_9.x86_64.rpm7ed8cbacaba58dba69cd7cb55479cef5ELSA-2021-1384
nss-util-3.53.1-1.el7_9.i686.rpm2035ff3ac36101d768e5e2a01a5c05cd-
nss-util-3.53.1-1.el7_9.x86_64.rpmccb5af9c46e53dbfa6adca91f349e877-
nss-util-devel-3.53.1-1.el7_9.i686.rpm43c6450ebc3d2794e7e22476db271f55-
nss-util-devel-3.53.1-1.el7_9.x86_64.rpmd965f04e00e96338e27ff5fa3836842c-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete