Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 488
Alerts This Week
Warning Icon 1 488

Fedora 22 FEDORA-2015-13616 Critical: mod_nss Cipher Parsing Fix

fedora
Calendar Grey November 1, 2015
Dist Fedora Esm H88
This security bulletin outlines the mod_ssl update remedying logical OR evaluation errors in OpenSSL-compatible encryption protocols.
Fix issue in parsing logical AND in OpenSSL-style ciphers, CVE-2015-3277.

Summary

The mod_nss module provides strong cryptography for the Apache Web

server via the Secure Sockets Layer (SSL) and Transport Layer

Security (TLS) protocols using the Network Security Services (NSS)

security library.

Update Information:

Fix issue in parsing logical AND in OpenSSL-style ciphers, CVE-2015-3277.

Change Log

References


[ 1 ] Bug #1243518 - CVE-2015-3277 mod_nss: incorrect multi-keyword mode cipherstring parsing [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1243518

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update mod_nss' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
critical
Lowest
Low
Medium
High
Critical

Name: mod_nss
Product: Fedora 22
Version: 1.0.11
Release: 4.fc22
Summary: SSL/TLS module for the Apache HTTP server

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.