Hello community, here is the log from the commit of package mozilla-nss for openSUSE:Factory checked in at 2014-01-10 21:21:02 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/mozilla-nss (Old) and /work/SRC/openSUSE:Factory/.mozilla-nss.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "mozilla-nss" Changes: -------- --- /work/SRC/openSUSE:Factory/mozilla-nss/mozilla-nss.changes 2013-12-10 17:43:54.000000000 +0100 +++ /work/SRC/openSUSE:Factory/.mozilla-nss.new/mozilla-nss.changes 2014-01-10 21:21:04.000000000 +0100 @@ -1,0 +2,38 @@ +Tue Jan 7 08:39:04 UTC 2014 - [email protected] + +- update to 3.15.4 + * required for Firefox 27 + * regular CA root store update (1.96) + * Reordered the cipher suites offered in SSL/TLS client hello + messages to match modern best practices. + * Improved SSL/TLS false start. In addition to enabling the + SSL_ENABLE_FALSE_START option, an application must now register + a callback using the SSL_SetCanFalseStartCallback function. + * When false start is enabled, libssl will sometimes return + unencrypted, unauthenticated data from PR_Recv + (CVE-2013-1740, bmo#919877) + New functionality + * Implemented OCSP querying using the HTTP GET method, which is + the new default, and will fall back to the HTTP POST method. + * Implemented OCSP server functionality for testing purposes + (httpserv utility). + * Support SHA-1 signatures with TLS 1.2 client authentication. + * Added the --empty-password command-line option to certutil, + to be used with -N: use an empty password when creating a new + database. + * Added the -w command-line option to pp: don't wrap long output + lines. + New functions + * CERT_ForcePostMethodForOCSP + * CERT_GetSubjectNameDigest + * CERT_GetSubjectPublicKeyDigest + * SSL_PeerCertificateChain + * SSL_RecommendedCanFalseStart + * SSL_SetCanFalseStartCallback + New types + * CERT_REV_M_FORCE_POST_METHOD_FOR_OCSP: When this flag is used, + libpkix will never attempt to use the HTTP GET method for OCSP + requests; it will always use POST. +- removed obsolete char.patch + +------------------------------------------------------------------- Old: ---- char.patch nss-3.15.3.1.tar.gz New: ---- nss-3.15.4.tar.gz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ mozilla-nss.spec ++++++ --- /var/tmp/diff_new_pack.gBKKC8/_old 2014-01-10 21:21:06.000000000 +0100 +++ /var/tmp/diff_new_pack.gBKKC8/_new 2014-01-10 21:21:06.000000000 +0100 @@ -1,8 +1,8 @@ # # spec file for package mozilla-nss # -# Copyright (c) 2013 SUSE LINUX Products GmbH, Nuernberg, Germany. -# Copyright (c) 2006-2013 Wolfgang Rosenauer +# Copyright (c) 2014 SUSE LINUX Products GmbH, Nuernberg, Germany. +# Copyright (c) 2006-2014 Wolfgang Rosenauer # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -25,7 +25,7 @@ BuildRequires: pkg-config BuildRequires: sqlite-devel BuildRequires: zlib-devel -Version: 3.15.3.1 +Version: 3.15.4 Release: 0 # bug437293 %ifarch ppc64 @@ -36,9 +36,9 @@ License: MPL-2.0 Group: System/Libraries Url: http://www.mozilla.org/projects/security/pki/nss/ -# hg clone https://hg.mozilla.org/projects/nss nss-3.15.3.1 ; cd nss-3.15.3.1 ; hg up NSS_3_15_3_1_RTM -#Source: https://ftp.mozilla.org/pub/mozilla.org/security/nss/releases/NSS_3_15_3_1_RTM/src/nss-%{version}.tar.gz -Source: nss-%{version}.tar.gz +Source: https://ftp.mozilla.org/pub/mozilla.org/security/nss/releases/NSS_3_15_4_RTM/src/nss-%{version}.tar.gz +# hg clone https://hg.mozilla.org/projects/nss nss-3.15.4/nss ; cd nss-3.15.4/nss ; hg up NSS_3_15_4_RTM +#Source: nss-%{version}.tar.gz Source1: nss.pc.in Source3: nss-config.in Source4: %{name}-rpmlintrc @@ -50,7 +50,6 @@ #Source10: PayPalEE.cert Patch1: nss-opt.patch Patch2: system-nspr.patch -Patch3: char.patch Patch4: nss-no-rpath.patch Patch5: renegotiate-transitional.patch Patch6: malloc.patch @@ -166,7 +165,6 @@ cd nss %patch1 -p1 %patch2 -p1 -%patch3 -p1 %patch4 -p1 %patch5 -p1 %if %suse_version > 1110 ++++++ nss-3.15.3.1.tar.gz -> nss-3.15.4.tar.gz ++++++ /work/SRC/openSUSE:Factory/mozilla-nss/nss-3.15.3.1.tar.gz /work/SRC/openSUSE:Factory/.mozilla-nss.new/nss-3.15.4.tar.gz differ: char 4, line 1 -- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
