nss 2:3.98-0ubuntu0.20.04.1 source package in Ubuntu
Changelog
nss (2:3.98-0ubuntu0.20.04.1) focal-security; urgency=medium * Updated to upstream 3.98 to fix security issues and get a new CA certificate bundle. - CVE-2023-4421: PKCS#1 v1.5 Bleichenbacher-like attack - CVE-2023-5388: timing issue in RSA operations - CVE-2023-6135: side-channel in multiple NSS NIST curves * Removed patches included in new version: - debian/patches/set-tls1.2-as-minimum.patch - debian/patches/bz1608327-freebl-arm - debian/patches/CVE-*.patch * Updated patches for new version: - debian/patches/38_hppa.patch - debian/patches/85_security_load.patch - debian/patches/disable_fips_enabled_read.patch * debian/control: bump libnspr version to 2:4.34. * debian/libnss3.symbols: added new symbols. -- Marc Deslauriers <email address hidden> Thu, 21 Mar 2024 09:44:10 -0400
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Focal
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any
- Section:
- libs
- Urgency:
- Medium Urgency
See full publishing history Publishing
Series | Published | Component | Section |
---|
Downloads
File | Size | SHA-256 Checksum |
---|---|---|
nss_3.98.orig.tar.gz | 73.1 MiB | f549cc33d35c0601674bfacf7c6ad683c187595eb4125b423238d3e9aa4209ce |
nss_3.98-0ubuntu0.20.04.1.debian.tar.xz | 23.3 KiB | 043c83271b571ec1b249202a9e8440da0834d9a3a27d6125a85e01c50c4a1372 |
nss_3.98-0ubuntu0.20.04.1.dsc | 2.2 KiB | eb06de5ebd545352e25f8cc1146bfe18477289434a61660737ec9cba5ce5e95d |
Available diffs
Binary packages built by this source
- libnss3: Network Security Service libraries
This is a set of libraries designed to support cross-platform development
of security-enabled client and server applications. It can support SSLv2
and v4, TLS, PKCS #5, #7, #11, #12, S/MIME, X.509 v3 certificates and
other security standards.
- libnss3-dbgsym: debug symbols for libnss3
- libnss3-dev: Development files for the Network Security Service libraries
This is a set of libraries designed to support cross-platform development
of security-enabled client and server applications. It can support SSLv2
and v4, TLS, PKCS #5, #7, #11, #12, S/MIME, X.509 v3 certificates and
other security standards.
.
Install this package if you wish to develop your own programs using the
Network Security Service Libraries.
- libnss3-tools: Network Security Service tools
This is a set of tools on top of the Network Security Service libraries.
This package includes:
* certutil: manages certificate and key databases (cert7.db and key3.db)
* modutil: manages the database of PKCS11 modules (secmod.db)
* pk12util: imports/exports keys and certificates between the cert/key
databases and files in PKCS12 format.
* shlibsign: creates .chk files for use in FIPS mode.
* signtool: creates digitally-signed jar archives containing files and/or
code.
* ssltap: proxy requests for an SSL server and display the contents of
the messages exchanged between the client and server.
- libnss3-tools-dbgsym: debug symbols for libnss3-tools