SUSE: 2018:3572-1 Moderate: Apache2-Mod_Nss Security Update
suse
October 30, 2018
An update that contains security fixes can now be installed
Summary
This update for apache2-mod_nss fixes the following issues: Due to the update of mozilla-nss apache2-mod_nss needs to be updated to change to the SQLite certificate database, which is now the default (bsc#1108771). Because of that this update is tagged as security, to reach customers that only install secuirty updates. Other changes contained: - Require minimal NSS version of 3.25 because of SSLv2 changes (bsc#993642) - Add support for SHA384 TLS ciphers (bsc#863035) - Remove deprecated NSSSessionCacheTimeout option from mod_nss.conf.in (bsc#998176) - Change ownership of the gencert generated NSS database so apache can read it (bsc#998180) - Use correct configuration path in mod_nss.conf.in (bsc#996282) - Generate dummy certificates if there aren't any in mod_nss.d (bsc#998183) Patch Instructions:
Topics Covered
References
#1108771 #863035 #993642 #996282 #998176
#998180 #998183
Affected Products:
SUSE Linux Enterprise Server 12-LTSS
https://bugzilla.suse.com/1108771
https://bugzilla.suse.com/863035
https://bugzilla.suse.com/993642
https://bugzilla.suse.com/996282
https://bugzilla.suse.com/998176
https://bugzilla.suse.com/998180
https://bugzilla.suse.com/998183
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Announcement ID: SUSE-SU-2018:3572-1
Rating: moderate
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!