** Bug watch added: Mozilla Bugzilla #1138554
https://bugzilla.mozilla.org/show_bug.cgi?id=1138554
** Also affects: nss via
https://bugzilla.mozilla.org/show_bug.cgi?id=1138554
Importance: Unknown
Status: Unknown
--
You received this bug notification because you are a member of
** Bug watch added: Mozilla Bugzilla #1138554
https://bugzilla.mozilla.org/show_bug.cgi?id=1138554
** Also affects: nss via
https://bugzilla.mozilla.org/show_bug.cgi?id=1138554
Importance: Unknown
Status: Unknown
--
You received this bug notification because you are a member of
** Changed in: nss
Status: Unknown = Fix Released
** Changed in: nss
Importance: Unknown = Medium
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to nss in Ubuntu.
https://bugs.launchpad.net/bugs/1465014
Title:
after update
** Changed in: nss
Status: Unknown = Fix Released
** Changed in: nss
Importance: Unknown = Medium
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1465014
Title:
after update still
** Changed in: firefox (Ubuntu)
Status: Confirmed = Triaged
** Changed in: firefox (Ubuntu)
Importance: Undecided = Critical
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1465014
Title:
** Changed in: firefox (Ubuntu)
Status: Confirmed = Triaged
** Changed in: firefox (Ubuntu)
Importance: Undecided = Critical
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to nss in Ubuntu.
** Changed in: nss (Ubuntu)
Status: Confirmed = Triaged
** Changed in: firefox (Ubuntu)
Status: Confirmed = Triaged
** No longer affects: firefox (Ubuntu)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
** Changed in: nss (Ubuntu)
Status: Confirmed = Triaged
** Changed in: firefox (Ubuntu)
Status: Confirmed = Triaged
** No longer affects: firefox (Ubuntu)
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to nss in Ubuntu.
** Also affects: firefox (Ubuntu)
Importance: Undecided
Status: New
** Changed in: firefox (Ubuntu)
Status: New = Confirmed
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1465014
** Also affects: firefox (Ubuntu)
Importance: Undecided
Status: New
** Changed in: firefox (Ubuntu)
Status: New = Confirmed
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to nss in Ubuntu.
3.19.2 was just released[1] with:
Notable Changes in NSS 3.19.2
Bug 1172128 - In NSS 3.19.1, the minimum key sizes that the freebl
cryptographic implementation (part of the softoken cryptographic module used by
default by NSS) was willing to generate or use was increased - for RSA keys, to
3.19.2 was just released[1] with:
Notable Changes in NSS 3.19.2
Bug 1172128 - In NSS 3.19.1, the minimum key sizes that the freebl
cryptographic implementation (part of the softoken cryptographic module used by
default by NSS) was willing to generate or use was increased - for RSA keys, to
** Changed in: firefox (Ubuntu)
Importance: Undecided = Critical
** Changed in: nss (Ubuntu)
Importance: Undecided = Critical
** Information type changed from Public to Public Security
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to
** Changed in: firefox (Ubuntu)
Importance: Undecided = Critical
** Changed in: nss (Ubuntu)
Importance: Undecided = Critical
** Information type changed from Public to Public Security
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is
Status changed to 'Confirmed' because the bug affects multiple users.
** Changed in: nss (Ubuntu)
Status: New = Confirmed
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to nss in Ubuntu.
https://bugs.launchpad.net/bugs/1465014
Status changed to 'Confirmed' because the bug affects multiple users.
** Changed in: firefox (Ubuntu)
Status: New = Confirmed
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1465014
Title:
Status changed to 'Confirmed' because the bug affects multiple users.
** Changed in: nss (Ubuntu)
Status: New = Confirmed
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1465014
Title:
after
Status changed to 'Confirmed' because the bug affects multiple users.
** Changed in: firefox (Ubuntu)
Status: New = Confirmed
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to nss in Ubuntu.
** Description changed:
Hint: http://www.ubuntu.com/usn/usn-2639-1/
As a security improvement, this update also modifies OpenSSL behaviour
to reject DH key sizes below 768 bits, preventing a possible downgrade
attack.
I installed the update but the test site says, i'm still
I think that site is simply printing the warning based on the browser
user agent, and not actually testing for the vulnerability.
logjam is planned to be officially addressed in Firefox 39, so it will
probably change once firefox 39 gets pushed out.
** Package changed: openssl (Ubuntu) = firefox
https://hg.mozilla.org/projects/nss/rev/ae72d76f8d24
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1465014
Title:
after update still vulnerable against LOGJAM
To manage notifications about this
https://hg.mozilla.org/projects/nss/rev/ae72d76f8d24
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to nss in Ubuntu.
https://bugs.launchpad.net/bugs/1465014
Title:
after update still vulnerable against LOGJAM
To manage notifications
Chrome and Firefox both uses NSS. NSS 3.19.1 contains fixes to mitigate
logjam by increasing the minimum modulus size for Diffie-Hellman keys to
1023 bits[1].
Maybe we can look into backporting that.
[1]https://developer.mozilla.org/en-
US/docs/Mozilla/Projects/NSS/NSS_3.19.1_release_notes
**
Chrome and Firefox both uses NSS. NSS 3.19.1 contains fixes to mitigate
logjam by increasing the minimum modulus size for Diffie-Hellman keys to
1023 bits[1].
Maybe we can look into backporting that.
[1]https://developer.mozilla.org/en-
US/docs/Mozilla/Projects/NSS/NSS_3.19.1_release_notes
**
24 matches
Mail list logo