ELSA-2021-0538

ULN >
Oracle Linux Errata repository >
ELSA-2021-0538

ELSA-2021-0538 - nss security and bug fix update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2021-02-17

Description

[3.53.1-17]
- Fix various corner cases with ike v1 app b support.

[3.53.1-16]
- Fix the following CVE
- CVE-2020-12403 chacha-poly issues
- CVE-2020-12400 constant time ECC.
- CVE-2020-6829 constant time ECC.

[3.53.1-15]
- Revert some policy changes the generate ABI runtime issues.

[3.53.1-14]
- Add support for enable/disable in policy. Now if your policy
file has disallow=x enable=y it will act just like our other
libraries.

[3.53.1-13]
- Add OAEP interface so applications can wrap keys with RSA-OAEP
rather than RSA-PKCS-1.

[3.53.1-12]
- fips need to reject small primes even if they are approved
- code to autodetect whether or not to use the cache needs to do so
in a way that doesn't mess with filesystem negative file caching.
- add kdf selftests

Related CVEs

CVE-2020-6829

CVE-2020-12400

CVE-2020-12403

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	nss-3.53.1-17.el8_3.src.rpm	8bc2c893cc33da3988c9b4af150ee50a4b882a758dfe6aab22f4b8486b908558	-	ol8_aarch64_appstream
	nss-3.53.1-17.el8_3.src.rpm	8bc2c893cc33da3988c9b4af150ee50a4b882a758dfe6aab22f4b8486b908558	-	ol8_aarch64_u4_security_validation
	nss-3.53.1-17.el8_3.aarch64.rpm	2a7d6ee943aa8255ff17b870b898a8d8061c05ee804a071c4bb12a748dde24e9	-	ol8_aarch64_appstream
	nss-3.53.1-17.el8_3.aarch64.rpm	2a7d6ee943aa8255ff17b870b898a8d8061c05ee804a071c4bb12a748dde24e9	-	ol8_aarch64_u4_security_validation
	nss-devel-3.53.1-17.el8_3.aarch64.rpm	b6f9abc9ad965b26fc0556a79aeeb3c2161cf54dba1a4e5fab5185f5cb5c7b3f	-	ol8_aarch64_appstream
	nss-devel-3.53.1-17.el8_3.aarch64.rpm	b6f9abc9ad965b26fc0556a79aeeb3c2161cf54dba1a4e5fab5185f5cb5c7b3f	-	ol8_aarch64_u4_security_validation
	nss-softokn-3.53.1-17.el8_3.aarch64.rpm	0c9e932596993890430378ef6fc5e7e13bec494d9ffc72bfc45d2c891bd6fb80	-	ol8_aarch64_appstream
	nss-softokn-3.53.1-17.el8_3.aarch64.rpm	0c9e932596993890430378ef6fc5e7e13bec494d9ffc72bfc45d2c891bd6fb80	-	ol8_aarch64_u4_security_validation
	nss-softokn-devel-3.53.1-17.el8_3.aarch64.rpm	2f43033ea2e7b108f27502ad05af8da086fb25d715cdc6a17411b26d0641313f	-	ol8_aarch64_appstream
	nss-softokn-devel-3.53.1-17.el8_3.aarch64.rpm	2f43033ea2e7b108f27502ad05af8da086fb25d715cdc6a17411b26d0641313f	-	ol8_aarch64_u4_security_validation
	nss-softokn-freebl-3.53.1-17.el8_3.aarch64.rpm	ba09ef9c1fea0e1eba2e0385e4e5849b94fcd965c7c0614557830c57a2f17027	-	ol8_aarch64_appstream
	nss-softokn-freebl-3.53.1-17.el8_3.aarch64.rpm	ba09ef9c1fea0e1eba2e0385e4e5849b94fcd965c7c0614557830c57a2f17027	-	ol8_aarch64_u4_security_validation
	nss-softokn-freebl-devel-3.53.1-17.el8_3.aarch64.rpm	66d4a564a474d848c87a8955fd02a008fc624dfc422f73f4a3f435d7a1e328b1	-	ol8_aarch64_appstream
	nss-softokn-freebl-devel-3.53.1-17.el8_3.aarch64.rpm	66d4a564a474d848c87a8955fd02a008fc624dfc422f73f4a3f435d7a1e328b1	-	ol8_aarch64_u4_security_validation
	nss-sysinit-3.53.1-17.el8_3.aarch64.rpm	da06944ec59245456586bec2775977ab47a528bc41a154036ce95e58ff1fb3cc	-	ol8_aarch64_appstream
	nss-sysinit-3.53.1-17.el8_3.aarch64.rpm	da06944ec59245456586bec2775977ab47a528bc41a154036ce95e58ff1fb3cc	-	ol8_aarch64_u4_security_validation
	nss-tools-3.53.1-17.el8_3.aarch64.rpm	a9e825ed650c4c6a926bd055f4918dd1879fc93ba8a0ed5d4cbe16dcbc69b7d7	-	ol8_aarch64_appstream
	nss-tools-3.53.1-17.el8_3.aarch64.rpm	a9e825ed650c4c6a926bd055f4918dd1879fc93ba8a0ed5d4cbe16dcbc69b7d7	-	ol8_aarch64_u4_security_validation
	nss-util-3.53.1-17.el8_3.aarch64.rpm	f60756251cfc3753ad345172ce2cf4817788080677aa32cb43631c5d079ccfd5	-	ol8_aarch64_appstream
	nss-util-3.53.1-17.el8_3.aarch64.rpm	f60756251cfc3753ad345172ce2cf4817788080677aa32cb43631c5d079ccfd5	-	ol8_aarch64_u4_security_validation
	nss-util-devel-3.53.1-17.el8_3.aarch64.rpm	6a8b772b5759b35eda918f8b2a69a24f585a21e021061064db0e756788ee53bb	-	ol8_aarch64_appstream
	nss-util-devel-3.53.1-17.el8_3.aarch64.rpm	6a8b772b5759b35eda918f8b2a69a24f585a21e021061064db0e756788ee53bb	-	ol8_aarch64_u4_security_validation

Oracle Linux 8 (x86_64)	nss-3.53.1-17.el8_3.src.rpm	8bc2c893cc33da3988c9b4af150ee50a4b882a758dfe6aab22f4b8486b908558	-	ol8_x86_64_appstream
	nss-3.53.1-17.el8_3.src.rpm	8bc2c893cc33da3988c9b4af150ee50a4b882a758dfe6aab22f4b8486b908558	-	ol8_x86_64_u4_security_validation
	nss-3.53.1-17.el8_3.i686.rpm	abc0e6429efe751b87597b28c0f0b981378f9089b207315cbf1bf133eb604466	-	ol8_x86_64_appstream
	nss-3.53.1-17.el8_3.i686.rpm	abc0e6429efe751b87597b28c0f0b981378f9089b207315cbf1bf133eb604466	-	ol8_x86_64_u4_security_validation
	nss-3.53.1-17.el8_3.x86_64.rpm	b1f8efc4554d76f4df0a9a4ef8a6086dac8c20092d18a666a37397bfeb5484bd	-	ol8_x86_64_appstream
	nss-3.53.1-17.el8_3.x86_64.rpm	b1f8efc4554d76f4df0a9a4ef8a6086dac8c20092d18a666a37397bfeb5484bd	-	ol8_x86_64_u4_security_validation
	nss-devel-3.53.1-17.el8_3.i686.rpm	86b44860db8e28ea40dc40fabff7e7007ae531571ba975135e9d3c6ad9aaee9b	-	ol8_x86_64_appstream
	nss-devel-3.53.1-17.el8_3.i686.rpm	86b44860db8e28ea40dc40fabff7e7007ae531571ba975135e9d3c6ad9aaee9b	-	ol8_x86_64_u4_security_validation
	nss-devel-3.53.1-17.el8_3.x86_64.rpm	e488a2053f5511efa126a1c02bb42b6ffe799d90a3298e7e5a288a64e33f65b1	-	ol8_x86_64_appstream
	nss-devel-3.53.1-17.el8_3.x86_64.rpm	e488a2053f5511efa126a1c02bb42b6ffe799d90a3298e7e5a288a64e33f65b1	-	ol8_x86_64_u4_security_validation
	nss-softokn-3.53.1-17.el8_3.i686.rpm	1fcae8ca62e0d4fb0ed03c5221ffe8d22765afc3c10160c2cb6b7909d53de9da	-	ol8_x86_64_appstream
	nss-softokn-3.53.1-17.el8_3.i686.rpm	1fcae8ca62e0d4fb0ed03c5221ffe8d22765afc3c10160c2cb6b7909d53de9da	-	ol8_x86_64_u4_security_validation
	nss-softokn-3.53.1-17.el8_3.x86_64.rpm	84cee237e7bddc9693ae255619e694afc3df79b233d26a3c5e4fcf3433958d95	-	ol8_x86_64_appstream
	nss-softokn-3.53.1-17.el8_3.x86_64.rpm	84cee237e7bddc9693ae255619e694afc3df79b233d26a3c5e4fcf3433958d95	-	ol8_x86_64_u4_security_validation
	nss-softokn-devel-3.53.1-17.el8_3.i686.rpm	3444a10ae09d477805af39372744fa3daada58e29687063ed4242ac401593e9b	-	ol8_x86_64_appstream
	nss-softokn-devel-3.53.1-17.el8_3.i686.rpm	3444a10ae09d477805af39372744fa3daada58e29687063ed4242ac401593e9b	-	ol8_x86_64_u4_security_validation
	nss-softokn-devel-3.53.1-17.el8_3.x86_64.rpm	1f05c514d20ec9f0b93a4aa79a8d6a2727d7cdfda75ad4118aa27e923b222bd0	-	ol8_x86_64_appstream
	nss-softokn-devel-3.53.1-17.el8_3.x86_64.rpm	1f05c514d20ec9f0b93a4aa79a8d6a2727d7cdfda75ad4118aa27e923b222bd0	-	ol8_x86_64_u4_security_validation
	nss-softokn-freebl-3.53.1-17.el8_3.i686.rpm	a66b290dc0b7091a7d6a39a6606c475e7e5f7f4bc4311d885f54a77a3fba9bb5	-	ol8_x86_64_appstream
	nss-softokn-freebl-3.53.1-17.el8_3.i686.rpm	a66b290dc0b7091a7d6a39a6606c475e7e5f7f4bc4311d885f54a77a3fba9bb5	-	ol8_x86_64_u4_security_validation
	nss-softokn-freebl-3.53.1-17.el8_3.x86_64.rpm	d80c5191617ee1280b4dba7e886f1c12ea2e18fb8072f9030aff6cba65ec0ecc	-	ol8_x86_64_appstream
	nss-softokn-freebl-3.53.1-17.el8_3.x86_64.rpm	d80c5191617ee1280b4dba7e886f1c12ea2e18fb8072f9030aff6cba65ec0ecc	-	ol8_x86_64_u4_security_validation
	nss-softokn-freebl-devel-3.53.1-17.el8_3.i686.rpm	e1fe08ee808992df54013882b9ab5dbdf2f11747e774f6969ce5fe8139d6c00c	-	ol8_x86_64_appstream
	nss-softokn-freebl-devel-3.53.1-17.el8_3.i686.rpm	e1fe08ee808992df54013882b9ab5dbdf2f11747e774f6969ce5fe8139d6c00c	-	ol8_x86_64_u4_security_validation
	nss-softokn-freebl-devel-3.53.1-17.el8_3.x86_64.rpm	07512b2b1181155c5c93615cd38d79fe672ce86ff5a428393a3827b2e993e999	-	ol8_x86_64_appstream
	nss-softokn-freebl-devel-3.53.1-17.el8_3.x86_64.rpm	07512b2b1181155c5c93615cd38d79fe672ce86ff5a428393a3827b2e993e999	-	ol8_x86_64_u4_security_validation
	nss-sysinit-3.53.1-17.el8_3.x86_64.rpm	c712b4b3a946d39849250d8bfb2b73ae4735e199ff344307c453a647ddcf603d	-	ol8_x86_64_appstream
	nss-sysinit-3.53.1-17.el8_3.x86_64.rpm	c712b4b3a946d39849250d8bfb2b73ae4735e199ff344307c453a647ddcf603d	-	ol8_x86_64_u4_security_validation
	nss-tools-3.53.1-17.el8_3.x86_64.rpm	ff5bca8b1b755375c8e13c5453884bdf4dc53e09258c939857cb1b1997b1f5de	-	ol8_x86_64_appstream
	nss-tools-3.53.1-17.el8_3.x86_64.rpm	ff5bca8b1b755375c8e13c5453884bdf4dc53e09258c939857cb1b1997b1f5de	-	ol8_x86_64_u4_security_validation
	nss-util-3.53.1-17.el8_3.i686.rpm	c3530945b00db11c37117b20c42e1a3436c458a26220058b893f21e093b6eeb7	-	ol8_x86_64_appstream
	nss-util-3.53.1-17.el8_3.i686.rpm	c3530945b00db11c37117b20c42e1a3436c458a26220058b893f21e093b6eeb7	-	ol8_x86_64_u4_security_validation
	nss-util-3.53.1-17.el8_3.x86_64.rpm	b81d6d7c2c8040fbbe77cb2f30cbd9ce52df609d918757a17c35bbc951922f8a	-	ol8_x86_64_appstream
	nss-util-3.53.1-17.el8_3.x86_64.rpm	b81d6d7c2c8040fbbe77cb2f30cbd9ce52df609d918757a17c35bbc951922f8a	-	ol8_x86_64_u4_security_validation
	nss-util-devel-3.53.1-17.el8_3.i686.rpm	a608b52ebb9cc16d400eed0e8c185230b1a87e465e1f38c943637018f9748317	-	ol8_x86_64_appstream
	nss-util-devel-3.53.1-17.el8_3.i686.rpm	a608b52ebb9cc16d400eed0e8c185230b1a87e465e1f38c943637018f9748317	-	ol8_x86_64_u4_security_validation
	nss-util-devel-3.53.1-17.el8_3.x86_64.rpm	7efc05d70edfc24ad3b53e992826433f21de230557388110950a9aced7967143	-	ol8_x86_64_appstream
	nss-util-devel-3.53.1-17.el8_3.x86_64.rpm	7efc05d70edfc24ad3b53e992826433f21de230557388110950a9aced7967143	-	ol8_x86_64_u4_security_validation

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691