nss (3.13.1.with.ckbi.1.88-1ubuntu7) quantal-proposed; urgency=low
* SECURITY UPDATE: denial of service in QuickDER decoder
- debian/patches/CVE-2012-0441.patch: properly handle zero-length basic
constraints and zero-length fields in
nss/mozilla/security/nss/lib/softoken/legacydb/keydb.c,
nss/mozilla/security/nss/lib/softoken/legacydb/lgcreate.c,
nss/mozilla/security/nss/lib/softoken/legacydb/lowkey.c,
nss/mozilla/security/nss/lib/softoken/legacydb/lowkeyti.h,
nss/mozilla/security/nss/lib/util/quickder.c.
- CVE-2012-0441
Date: Thu, 16 Aug 2012 10:57:28 -0400
Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com>
Maintainer: Ubuntu Mozilla Team <ubuntu-mozillat...@lists.ubuntu.com>
https://launchpad.net/ubuntu/quantal/+source/nss/3.13.1.with.ckbi.1.88-1ubuntu7
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Thu, 16 Aug 2012 10:57:28 -0400
Source: nss
Binary: libnss3 libnss3-1d libnss3-tools libnss3-dev libnss3-dbg
Architecture: source
Version: 3.13.1.with.ckbi.1.88-1ubuntu7
Distribution: quantal-proposed
Urgency: low
Maintainer: Ubuntu Mozilla Team <ubuntu-mozillat...@lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com>
Description:
libnss3 - Network Security Service libraries
libnss3-1d - Network Security Service libraries
libnss3-dbg - Debugging symbols for the Network Security Service libraries
libnss3-dev - Development files for the Network Security Service libraries
libnss3-tools - Network Security Service tools
Changes:
nss (3.13.1.with.ckbi.1.88-1ubuntu7) quantal-proposed; urgency=low
.
* SECURITY UPDATE: denial of service in QuickDER decoder
- debian/patches/CVE-2012-0441.patch: properly handle zero-length basic
constraints and zero-length fields in
nss/mozilla/security/nss/lib/softoken/legacydb/keydb.c,
nss/mozilla/security/nss/lib/softoken/legacydb/lgcreate.c,
nss/mozilla/security/nss/lib/softoken/legacydb/lowkey.c,
nss/mozilla/security/nss/lib/softoken/legacydb/lowkeyti.h,
nss/mozilla/security/nss/lib/util/quickder.c.
- CVE-2012-0441
Checksums-Sha1:
d3cde2aa7b933a17f3063430e37eefdc8365f386 2408
nss_3.13.1.with.ckbi.1.88-1ubuntu7.dsc
90dd937b5fbf7c1092ff44ad9b7e63470020de8c 82135
nss_3.13.1.with.ckbi.1.88-1ubuntu7.debian.tar.gz
Checksums-Sha256:
ef596bb80a272e93c6cc7a089c4a425f719b515242f168a0f22b04c3464b7d0d 2408
nss_3.13.1.with.ckbi.1.88-1ubuntu7.dsc
3601a5676688caaf8154f9b345ed75f1558a41f0f0f7b21c509ab89913360929 82135
nss_3.13.1.with.ckbi.1.88-1ubuntu7.debian.tar.gz
Files:
31fc03be26482deed2005021f5bcbfbb 2408 libs optional
nss_3.13.1.with.ckbi.1.88-1ubuntu7.dsc
52212a6f0803c1d02a9197dfc578443d 82135 libs optional
nss_3.13.1.with.ckbi.1.88-1ubuntu7.debian.tar.gz
Original-Maintainer: Maintainers of Mozilla-related packages
<pkg-mozilla-maintain...@lists.alioth.debian.org>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)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=+rhZ
-----END PGP SIGNATURE-----
--
Quantal-changes mailing list
Quantal-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/quantal-changes
