Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

Fedora 30 NSS Security Update: FEDORA-2019-481a343318 Moderate

fedora
Calendar Grey May 21, 2019
Dist Fedora Esm H88
Delve into the Fedora 30 nss security patch, tackling significant vulnerabilities while improving network safety features.
Updates the nss package to upstream NSS 3.44

Summary

Network Security Services (NSS) is a set of libraries designed to

support cross-platform development of security-enabled client and

server applications. Applications built with NSS can support SSL v2

and v3, TLS, PKCS #5, PKCS #7, PKCS #11, PKCS #12, S/MIME, X.509

v3 certificates, and other security standards.

Updates the nss package to upstream NSS 3.44. For details about new

functionality and a list of bugs fixed in this release please see the upstream

* Mon May 20 2019 Daiki Ueno - 3.44.0-2

- Skip TLS 1.3 tests under FIPS mode

* Fri May 17 2019 Daiki Ueno - 3.44.0-1

- Update to NSS 3.44

* Mon May 6 2019 Daiki Ueno - 3.43.0-3

- Fix PKCS#11 module leak if C_GetSlotInfo() failed

[ 1 ] Bug #1703987 - nss: Handling of Netscape Certificate Sequences in CERT_DecodeCertPackage() may crash with a NULL deref leading to DoS. [fedora-all]

https://bugzilla.redhat.com/show_bug.cgi?id=1703987

[ 2 ] Bug #1247353 - [debuginfo package] nss ships executable source files

https://bugzilla.redhat.com/show_bug.cgi?id=1247353

[ 3 ] Bug #1708818 - nss-3.44 is available

https://bugzilla.redhat.com/show_bug.cgi?id=1708818

[ 4 ] Bug #1638076 - certutil[5209]: segfault at 46 ip 00007f705ba1a0a6 sp 00007ffce2280d38 error 4 in libc-2.27.so[7f705b982000+1b5000]

https://bugzilla.redhat.com/show_bug.cgi?id=1638076

su -c 'dnf upgrade --advisory FEDORA-2019-481a343318' at the command

line. For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora Code of Conduct: List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/

Topics%20covered

Topics Covered

security advisory moderate security update fedora bug fix network services nss

Change Log

References

Update Instructions

Product: Fedora 30
Version: 3.44.0
Release: 2.fc30
URL: https://firefox-source-docs.mozilla.org/security/nss/index.html
Summary: Network Security Services

Topics%20covered

Topics Covered

security advisory moderate security update fedora bug fix network services nss

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here