Oracle Errata SystemOracle Linux5.32021-09-09T12:48:09
ELSA-2013-1829: nss, nspr, and nss-util security update (IMPORTANT)
Oracle Linux 6
nspr
[4.10.0-2]
- Rebase to nspr-4.10.2
- Resolves: rhbz#1032485 - CVE-2013-5607 (MFSA 2013-103) Avoid unsigned integer wrapping in PL_ArenaAllocate (MFSA 2013-103)
nss
[3.15.3-2.0.1]
- Added nss-vendor.patch to change vendor
[3.15.3-2]
- Enable patch with fix for deadlock in trust domain lock and object lock
- Resolves: Bug 1036477 - deadlock in trust domain lock and object lock
- Disable hw gcm on rhel-5 based build environments where OS lacks support
- Rollback changes to build nss without softokn until Bug 689919 is approved
- Cipher suite was run as part of the nss-softokn build
[3.15.3-1]
- Update to NSS_3_15_3_RTM
- Resolves: Bug 1032470 - CVE-2013-5605 CVE-2013-5606 CVE-2013-1741
nss-util
[3.15.3-1]
- Update to NSS_3_15_3_RTM
- Resolves: rhbz#1032470 - CVE-2013-5605 CVE-2013-5606 CVE-2013-1741
IMPORTANTCopyright 2013 Oracle, Inc.CVE-2013-1739CVE-2013-1741CVE-2013-5605CVE-2013-5606CVE-2013-5607nss-pkcs11-develnss-develnss-util-develnsproraclelinux-releasenss-sysinitnss-toolsnspr-develnssnss-util72f97b74ec551f03^6x86_640:4.10.2-1.el6_50:3.15.3-2.0.1.el6_50:3.15.3-1.el6_5i686