Re: [ANNOUNCE] NSS 3.13 Release
On 10/15/11 3:51 AM, Wan-Teh Chang wrote: NSS 3.13 has been released. The CVS tag is NSS_3_13_RTM. The source tar file can be downloaded from https://ftp.mozilla.org/pub/mozilla.org/security/nss/releases/NSS_3_13_RTM/. You can find the new features and bug fixes in NSS 3.13 with this Bugzilla query: https://bugzilla.mozilla.org/buglist.cgi?list_id=1496878resolution=FIXEDclassification=Componentsquery_format=advancedtarget_milestone=3.13product=NSS Some notable changes include: 1. SSL 2.0 is disabled by default. 2. A defense against the SSL 3.0 and TLS 1.0 CBC chosen plaintext attack demonstrated by Rizzo and Duong (CVE-2011-3389) is enabled by default. Set the SSL_CBC_RANDOM_IV SSL option to PR_FALSE to disable it. 3. SHA-224 is supported. 4. Ported to iOS. (Requires NSPR 4.9.) Hi Wan-Teh, Thank you for this notice. I'm more just curious but do we know of any publicly software shipping for iOS that uses NSS 3.13? Thank you, Gen -- Gen Kanai -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
Re: [ANNOUNCE] NSS 3.13 Release
On Mon, Oct 17, 2011 at 1:11 AM, Gen Kanai gka...@gmail.com wrote: 4. Ported to iOS. (Requires NSPR 4.9.) Hi Wan-Teh, Thank you for this notice. I'm more just curious but do we know of any publicly software shipping for iOS that uses NSS 3.13? I don't know of any. FYI, here is the bug: https://bugzilla.mozilla.org/show_bug.cgi?id=680878 Note: the patches showed that for the functionality used by NSS, iOS is almost the same as Mac OS X. Other than build system changes, the only difference is that the _NSGetEnviron() function is not available. Wan-Teh -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
[ANNOUNCE] NSS 3.13 Release
NSS 3.13 has been released. The CVS tag is NSS_3_13_RTM. The source tar file can be downloaded from https://ftp.mozilla.org/pub/mozilla.org/security/nss/releases/NSS_3_13_RTM/. You can find the new features and bug fixes in NSS 3.13 with this Bugzilla query: https://bugzilla.mozilla.org/buglist.cgi?list_id=1496878resolution=FIXEDclassification=Componentsquery_format=advancedtarget_milestone=3.13product=NSS Some notable changes include: 1. SSL 2.0 is disabled by default. 2. A defense against the SSL 3.0 and TLS 1.0 CBC chosen plaintext attack demonstrated by Rizzo and Duong (CVE-2011-3389) is enabled by default. Set the SSL_CBC_RANDOM_IV SSL option to PR_FALSE to disable it. 3. SHA-224 is supported. 4. Ported to iOS. (Requires NSPR 4.9.) 5. Added PORT_ErrorToString and PORT_ErrorToName to return the error message and symbolic name of an NSS error code. 6. Added NSS_GetVersion to return the NSS version string. 7. Added experimental support of RSA-PSS to the softoken only (by Hanno Böck, http://rsapss.hboeck.de/). Wan-Teh Chang -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
