Fedora 27: 2018-4a21a8ca59 Critical: NSPR Security Update

NSPR provides platform independence for non-GUI operating system

facilities. These facilities include threads, thread synchronization,

normal file and network I/O, interval timing and calendar time, basic

memory management (malloc and free) and shared library linking.

Updates the nss family of packages to upstream NSPR 4.20 and NSS 3.39. For

details about new functionality and a list of bugs fixed in this release please

* Mon Sep 3 2018 Daiki Ueno - 4.20.0-1

- Update to NSPR 4.20

- Use the upstream tarball as it is (rhbz#1578106)

* Thu Mar 8 2018 Daiki Ueno - 4.19.0-1

- Update to NSPR 4.19

* Wed Feb 7 2018 Daiki Ueno - 4.18.0-1

- Update to NSPR 4.18

[ 1 ] Bug #1624704 - CVE-2018-12384 nss: ServerHello.random is all zeros when handling a v2-compatible ClientHello [fedora-all]

https://bugzilla.redhat.com/show_bug.cgi?id=1624704

[ 2 ] Bug #1620207 - Enable SSLKEYLOGFILE support

https://bugzilla.redhat.com/show_bug.cgi?id=1620207

[ 3 ] Bug #1578106 - Package version is invalid, or no Source URL provided

https://bugzilla.redhat.com/show_bug.cgi?id=1578106

su -c 'dnf upgrade --advisory FEDORA-2018-4a21a8ca59' at the command

line. For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/

List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/