Fedora 22: FEDORA-2015-9342 Low: NSS-PKI Vulnerability Patch
fedora
June 1, 2015
Security fix for CVE-2015-4000 Update to the upstream NSS 3.19.1 release, which includes a fix for the recently published logjam attack
Summary
Utilities for Network Security Services and the Softoken module
Update Information:
Security fix for CVE-2015-4000
Update to the upstream NSS 3.19.1 release, which includes a fix for the recently published logjam attack.
The previous 3.19 release made several notable changes related to the TLS protocol, one of them was to disable the SSL 3 protocol by default.
For the full list of changes in the 3.19 and 3.19.1 releases, please refer to the upstream release notes documents:
Topics Covered
Change Log
* Thu May 28 2015 Kai Engert
References
[ 1 ] Bug #1223211 - CVE-2015-4000 LOGJAM: TLS connections which support export grade DHE key-exchange are vulnerable to MITM attacks
https://bugzilla.redhat.com/show_bug.cgi?id=1223211
Update Instructions
This update can be installed with the "yum" update program. Use su -c 'yum update nss-util' at the command line. For more information, refer to "Managing Software with yum", available at .
PREVIOUS
NEXT
Severity
low
Lowest
Low
Medium
High
Critical
Name: nss-util
Product: Fedora 21
Version: 3.19.1
Release: 1.0.fc21
Summary: Network Security Services Utilities Library
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!