drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Invalidierung von Zertifikaten in nss
Name: |
Invalidierung von Zertifikaten in nss |
|
ID: |
FEDORA-2013-0271 |
|
Distribution: |
Fedora |
|
Plattformen: |
Fedora 17 |
|
Datum: |
Sa, 12. Januar 2013, 23:10 |
|
Referenzen: |
Keine Angabe |
|
Applikationen: |
NSS |
|
Originalnachricht |
Name : nss Product : Fedora 17 Version : 3.14.1 Release : 3.fc17 URL : http://www.mozilla.org/projects/security/pki/nss/ Summary : Network Security Services Description : Network Security Services (NSS) is a set of libraries designed to support cross-platform development of security-enabled client and server applications. Applications built with NSS can support SSL v2 and v3, TLS, PKCS #5, PKCS #7, PKCS #11, PKCS #12, S/MIME, X.509 v3 certificates, and other security standards.
------------------------------------------------------------------------------- - Update Information:
Pick up NSS release that distrusts the mis-issued Turktrust intermediates Rebase pem sources to pick up two bug fixes from rhel-6.3
Remove fix for gcc 4.7 c++ issue in secmodt.h which actually undoes the upstream fix. Rebase pem sources to pick up two bug fixes from rhel-6.3
Remove fix for gcc 4.7 c++ issue in secmodt.h which actually undoes the upstream fix. ------------------------------------------------------------------------------- - ChangeLog:
* Wed Jan 2 2013 Kai Engert <kaie@redhat.com> - 3.14.1-3 - Update to NSS_3_14_1_WITH_CKBI_1_93_RTM * Sat Dec 22 2012 Elio Maldonado <emaldona@redhat.com> - 3.14.1-2 - Require nspr >= 4.9.4 - Fix changelog invalid dates * Mon Dec 17 2012 Elio Maldonado <emaldona@redhat.com> - 3.14.1-1 - Update to NSS_3_14_1_RTM * Wed Dec 12 2012 Elio Maldonado <emaldona@redhat.com> - 3.14-12 - Bug 879978 - Install the nssck.api header template where mod_revocator can access it - Install nssck.api in /usr/includes/nss3/templates * Tue Nov 27 2012 Elio Maldonado <emaldona@redhat.com> - 3.14-11 - Bug 879978 - Install the nssck.api header template in a place where mod_revocator can access it - Install nssck.api in /usr/includes/nss3 * Mon Nov 19 2012 Elio Maldonado <emaldona@redhat.com> - 3.14-7 - Bug 870864 - Add support in NSS for Secure Boot * Fri Nov 9 2012 Elio Maldonado <emaldona@redhat.com> - 3.14-6 - Disable bypass code at build time and return failure on attempts to enable at runtime - Bug 806588 - Disable SSL PKCS #11 bypass at build time - Fix changelog release tags to match what was actually built * Mon Nov 5 2012 Elio Maldonado <emaldona@redhat.com> - 3.14-5 - Fix pk11wrap locking which fixes 'fedpkg new-sources' and 'fedpkg update' hangs - Bug 872124 - nss-3.14 breaks fedpkg new-sources * Thu Nov 1 2012 Elio Maldonado <emaldona@redhat.com> - 3.14-4 - Add a dummy source file for testing /preventing fedpkg breakage - Helps test the fedpkg new-sources and upload commands for breakage by nss updates - Related to Bug 872124 - nss 3.14 breaks fedpkg new-sources * Thu Nov 1 2012 Elio Maldonado <emaldona@redhat.com> - 3.14-3 - Reenable patch to set NSS_SSL_CBC_RANDOM_IV to 1 by default - Update the patch to account for the new sources - Resolves Bug 872124 - nss 3.14 breaks fedpkg new-sources * Wed Oct 31 2012 Elio Maldonado <emaldona@redhat.com> - 3.14-2 - Fix the spec file so sechash.h gets installed - Resolves: rhbz#871882 - missing header: sechash.h in nss 3.14 * Sat Oct 27 2012 Elio Maldonado <emaldona@redhat.com> - 3.14-4 - Update the license to MPLv2.0 * Wed Oct 24 2012 Elio Maldonado <emaldona@redhat.com> - 3.14-3 - Use only -f when removing unwanted headers * Tue Oct 23 2012 Elio Maldonado <emaldona@redhat.com> - 3.14-2 - Add secmodt.h to the headers installed by nss-devel - nss-devel must install secmodt.h which moved from softoken to pk11wrap with nss-3.14 * Mon Oct 22 2012 Elio Maldonado <emaldona@redhat.com> - 3.14-1 - Update to NSS_3_14_RTM * Sun Oct 21 2012 Elio Maldonado <emaldona@redhat.com> - 3.14-0.1.rc.1 - Update to NSS_3_14_RC1 - update nss-589636.patch to apply to httpdserv - turn off ocsp tests for now - remove no longer needed patches - remove headers shipped by nss-util * Fri Oct 5 2012 Kai Engert <kaie@redhat.com> - 3.13.6-1 - Update to NSS_3_13_6_RTM * Fri Aug 31 2012 Elio Maldonado <emaldona@redhat.com> - 3.13.5-8 - Rebase pem sources to fedora-hosted upstream to pick up two fixes from rhel-6.3 - Resolves: rhbz#847460 - Fix invalid read and free on invalid cert load - Resolves: rhbz#847462 - PEM module may attempt to free uninitialized pointer - Remove unneeded fix gcc 4.7 c++ issue in secmodt.h that actually undoes the upstream fix - Selective merge from master * Mon Aug 13 2012 Elio Maldonado <emaldona@redhat.com> - 3.13.5-7 - Fix pluggable ecc support * Sun Jul 1 2012 Elio Maldonado <emaldona@redhat.com> - 3.13.5-1 - Update to NSS_3_13_5_RTM - Resolves: Bug 830410 - Missing Requires %{?_isa} - Use Requires: %{name}%{?_isa} = %{version}-%{release} on tools - Drop zlib requires which rpmlint reports as error E: explicit-lib-dependency zlib - Enable sha224 portion of powerup selftest when running test suites - Require nspr 4.9.1 - Selective merge from master ------------------------------------------------------------------------------- - References:
[ 1 ] Bug #891761 - Pick up NSS release that distrusts the mis-issued Turktrust intermediates https://bugzilla.redhat.com/show_bug.cgi?id=891761 [ 2 ] Bug #847462 - pem module may attempt to free an uninitialized pointer https://bugzilla.redhat.com/show_bug.cgi?id=847462 ------------------------------------------------------------------------------- -
This update can be installed with the "yum" update program. Use su -c 'yum update nss' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys ------------------------------------------------------------------------------- - _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-announce
|
|
|
|