-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2010-15897 2010-10-07 19:46:51 --------------------------------------------------------------------------------
Name : nss Product : Fedora 14 Version : 3.12.8 Release : 2.fc14 URL : http://www.mozilla.org/projects/security/pki/nss/ Summary : Network Security Services Description : Network Security Services (NSS) is a set of libraries designed to support cross-platform development of security-enabled client and server applications. Applications built with NSS can support SSL v2 and v3, TLS, PKCS #5, PKCS #7, PKCS #11, PKCS #12, S/MIME, X.509 v3 certificates, and other security standards. -------------------------------------------------------------------------------- Update Information: Update to 3.12.8 Improves handling of certificates with IP wildcards: http://www.mozilla.org/security/announce/2010/mfsa2010-70.html -------------------------------------------------------------------------------- ChangeLog: * Wed Oct 6 2010 Elio Maldonado <[email protected]> - 3.12.8-2 - Move triggerpostun -n nss-sysinit script ahead of the other ones (#639248) * Tue Oct 5 2010 Elio Maldonado <[email protected]> - 3.12.8-1 - Update to 3.12.8 - Fix invalid %postun scriptlet (#639248) * Thu Sep 30 2010 Elio Maldonado <[email protected]> - 3.12.7-9 - Fix version on triggerpostun scriplet (#636787) * Wed Sep 29 2010 Elio Maldonado <[email protected]> - 3.12.7-8 - Replace posttrans sysinit scriptlet with a triggerpostun one (#636787) - Fix and cleanup the setup-nsssysinit.sh script (#636792, #636801) * Tue Sep 28 2010 Elio Maldonado <[email protected]> - 3.12.7-7 - Prevent of nss-sysinit disabling on package upgrade (#636787) - Create pkcs11.txt with correct permissions regardless of umask (#636792) - Setup-nsssysinit.sh reports whether nss-sysinit is turned on or off (#636801) - Add provides nss-pkcs11-devel-static to comply with packaging guidelines (#609612) -------------------------------------------------------------------------------- References: [ 1 ] Bug #630047 - CVE-2010-3170 firefox/nss: doesn't handle IP-based wildcards in X509 certificates safely https://bugzilla.redhat.com/show_bug.cgi?id=630047 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update nss' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list [email protected] https://admin.fedoraproject.org/mailman/listinfo/package-announce
