Alerts This Week
Warning Icon 1 677
Alerts This Week
Warning Icon 1 677

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -2 articles for you...
199
Ls Advisories Centos Esm H240
Price Tag 1security advisorysecurity issuesoftware update

Critical NSS Package Update for CentOS 7 - CESA-2021-4904 Advisory

Upstream details at : https://access.redhat.com/errata/RHSA-2021:4904. CentOS Errata and Security Advisory 2021:4904 Critical Upstream details at : https://access.redhat.com/errata/RHSA-2021:4904 The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) x86_64: 62dcb9c05fcad8a7e7f0588dcf5a7500f9fb5e4b2cf0250f64430bd3a95b42f8 nss-3.67.0-4.el7_9.i686.rpm 4631ab28c6b9c4fb1461b0f98b9c1de4c06d08fc1e07b0e42d44f966c8d31507 nss-3.67.0-4.el7_9.x86_64.rpm d1faf007d61466191ae5ad07935839a8673f5e51b6c24bd3465e5503da56f20b nss-devel-3.67.0-4.el7_9.i686.rpm c8da0723eb57ace188d0bd03e37e8827a42913c10542cfa8bd6bd8817a724916 nss-devel-3.67.0-4.el7_9.x86_64.rpm 821ad7280fd9322e235862f73d1cb6c433fe48e14911cbc39141b2df2732bc01 nss-pkcs11-devel-3.67.0-4.el7_9.i686.rpm feb6b437532dab8f5310701ed22fb3134f9e87f87fd7786802bcadba0cdeb3d6 nss-pkcs11-devel-3.67.0-4.el7_9.x86_64.rpm 56f07c39bdea546bc3f3eb930711eb7562fbf0cd8fbcbd9f5e3f7fae8dbf2013 nss-sysinit-3.67.0-4.el7_9.x86_64.rpm e649737e5bf6a5d2b0bb6c20cbdfd046ba295e9f79765fec2800f61f3d408ac0 nss-tools-3.67.0-4.el7_9.x86_64.rpm Source: a3ee82f50a9657766a129497fc125bbf6af82642c5a3dcb4e8c90d08f5075456 nss-3.67.0-4.el7_9.src.rpm -- Johnny Hughes CentOS Project { https://www.centos.org/ } irc: hughesjr, #This email address is being protected from spambots. You need JavaScript enabled to view it. Twitter: @JohnnyCentOS _______________________________________________ CentOS-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . The CentOS 7 team released a vital advisory on the NSS package, urging users to apply updates swiftly for critical security vulnerabilities and risks. CentOS Security Advisory,Critical Update,NSS Package,Package Update. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Dec 06, 2021 Critical CentOS
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorysecurity updatesoftware update

Fedora 32: FEDORA-2020-481c7e285d Moderate: nss Network Services Update

Updates the nss package to upstream NSS 3.55. For details about new functionality and a list of bugs fixed in this release please see the upstream release notes - . --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2020-481c7e285d 2020-08-16 01:04:33.325403 --------------------------------------------------------------------------------Name : nss Product : Fedora 32 Version : 3.55.0 Release : 1.fc32 URL : https://firefox-source-docs.mozilla.org/security/nss/index.html Summary : Network Security Services Description : Network Security Services (NSS) is a set of libraries designed to support cross-platform development of security-enabled client and server applications. Applications built with NSS can support SSL v2 and v3, TLS, PKCS #5, PKCS #7, PKCS #11, PKCS #12, S/MIME, X.509 v3 certificates, and other security standards. --------------------------------------------------------------------------------Update Information: Updates the nss package to upstream NSS 3.55. For details about new functionality and a list of bugs fixed in this release please see the upstream release notes - --------------------------------------------------------------------------------ChangeLog: * Sun Aug 2 2020 Daiki Ueno - 3.55.0-1 - Update to NSS 3.55 --------------------------------------------------------------------------------References: [ 1 ] Bug #1851294 - CVE-2020-12401 nss: ECDSA timing attack mitigation bypass https://bugzilla.redhat.com/show_bug.cgi?id=1851294 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2020-481c7e285d' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keysused by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . Ubuntu network utilities nss upgraded to edition 3.55 featuring enhanced security measures and bug corrections for its user base.. NSS Update, Fedora 32, Network Security Services, Software Fixes. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Aug 15, 2020 Important Fedora
Banner 2 1028x280 1708121730 1 1771599631
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorynetwork securityupdate

Fedora 30: FEDORA-2020-9254bf8b94 Critical: nss Security Update

Updates the nss package to upstream NSS 3.49. For details about new functionality and a list of bugs fixed in this release please see the upstream release notes - . --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2020-9254bf8b94 2020-01-31 01:11:29.743237 --------------------------------------------------------------------------------Name : nss Product : Fedora 30 Version : 3.49.0 Release : 1.fc30 URL : https://firefox-source-docs.mozilla.org/security/nss/index.html Summary : Network Security Services Description : Network Security Services (NSS) is a set of libraries designed to support cross-platform development of security-enabled client and server applications. Applications built with NSS can support SSL v2 and v3, TLS, PKCS #5, PKCS #7, PKCS #11, PKCS #12, S/MIME, X.509 v3 certificates, and other security standards. --------------------------------------------------------------------------------Update Information: Updates the nss package to upstream NSS 3.49. For details about new functionality and a list of bugs fixed in this release please see the upstream release notes - --------------------------------------------------------------------------------ChangeLog: * Fri Jan 10 2020 Daiki Ueno - 3.49.0-1 - Update to NSS 3.49 - Fix build on armv7hl with the patch proposed in upstream * Fri Jan 3 2020 Daiki Ueno - 3.48.0-1 - Update to NSS 3.48 * Tue Dec 3 2019 Daiki Ueno - 3.47.1-4 - Update nss-3.47-certdb-temp-cert.patch to avoid setting empty trust value * Tue Dec 3 2019 Daiki Ueno - 3.47.1-3 - Update nss-3.47-certdb-temp-cert.patch to the final version * Thu Nov 28 2019 Daiki Ueno - 3.47.1-2 - Fix intermittent SEC_ERROR_UNKNOWN_ISSUER (#1752303, #1648617) * Fri Nov 22 2019 Daiki Ueno - 3.47.1-1 - Update to NSS 3.47.1 * Thu Nov 7 2019 Bob Relyea - 3.47.0-3 - Include ike mechanism fix * Wed Oct 23 2019 Daiki Ueno - 3.47.0-2 - Install cmac.hrequired by blapi.h (#1764513) * Tue Oct 22 2019 Daiki Ueno - 3.47.0-1 - Update to NSS 3.47 * Mon Oct 21 2019 Daiki Ueno - 3.46.1-1 - Update to NSS 3.46.1 * Wed Sep 4 2019 Daiki Ueno - 3.46.0-2 - Rebuild with NSPR 4.22 * Tue Sep 3 2019 Daiki Ueno - 3.46.0-1 - Update to NSS 3.46 * Tue Jul 2 2019 Daiki Ueno - 3.44.1-1 - Update to NSS 3.44.1 * Mon May 20 2019 Daiki Ueno - 3.44.0-2 - Skip TLS 1.3 tests under FIPS mode * Fri May 17 2019 Daiki Ueno - 3.44.0-1 - Update to NSS 3.44 * Mon May 6 2019 Daiki Ueno - 3.43.0-3 - Fix PKCS#11 module leak if C_GetSlotInfo() failed --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2020-9254bf8b94' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . The latest NSS update in Fedora 30 improves network safeguarding capabilities and addresses existing problems.. NSS Package Update, Fedora 30, Network Security Services, TLS Support, Security Fixes. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jan 30, 2020 Critical Fedora
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorydenial of servicedebian

Debian 8 DSA-3872-1 Moderate: Denial of Service in NSS Package

Several vulnerabilities were discovered in NSS, a set of cryptographic libraries, which may result in denial of service or information disclosure. . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3872-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/security/ Moritz Muehlenhoff June 01, 2017 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : nss CVE ID : CVE-2017-5461 CVE-2017-5462 CVE-2017-7502 Several vulnerabilities were discovered in NSS, a set of cryptographic libraries, which may result in denial of service or information disclosure. For the stable distribution (jessie), these problems have been fixed in version 2:3.26-1+debu8u2. For the unstable distribution (sid), these problems will be fixed soon. We recommend that you upgrade your nss packages. Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . Enhance nss package versions to address various vulnerabilities in Debian, which could lead to potential data leaks or service interruptions.. Debian Security Advisory,NSS Libraries,Denial of Service,Information Disclosure,Data Protection. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jun 01, 2017 Important Debian
Banner 2 1028x280 1708121730 1 1771599631
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorysecurity issuebuffer overflow

Red Hat 6 And 7: RHSA-2015:1981-01 Critical NSS Update And Threats

Updated nss, nss-util, and nspr packages that fix three security issues are now available for Red Hat Enterprise Linux 6 and 7. Red Hat Product Security has rated this update as having Critical security [More...] . ==================================================================== Red Hat Security Advisory Synopsis: Critical: nss, nss-util, and nspr security update Advisory ID: RHSA-2015:1981-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2015:1981.html Issue date: 2015-11-04 CVE Names: CVE-2015-7181 CVE-2015-7182 CVE-2015-7183 ==================================================================== 1. Summary: Updated nss, nss-util, and nspr packages that fix three security issues are now available for Red Hat Enterprise Linux 6 and 7. Red Hat Product Security has rated this update as having Critical security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Client (v. 7) - x86_64 Red Hat Enterprise Linux Client Optional (v. 7) - x86_64 Red Hat Enterprise Linux ComputeNode (v. 7) - x86_64 Red Hat Enterprise Linux ComputeNode Optional (v. 7) - x86_64 Red Hat Enterprise Linux Desktop (v. 6) - i386, x86_64 Red Hat Enterprise Linux Desktop Optional (v. 6) - i386, x86_64 Red Hat Enterprise Linux HPC Node (v. 6) - x86_64 Red Hat Enterprise Linux HPC Node Optional (v. 6) - x86_64 Red Hat Enterprise Linux Server (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Server (v. 7) - ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 7) - ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Workstation (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation (v. 7) -x86_64 Red Hat Enterprise Linux Workstation Optional (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation Optional (v. 7) - x86_64 3. Description: Network Security Services (NSS) is a set of libraries designed to support cross-platform development of security-enabled client and server applications. Netscape Portable Runtime (NSPR) provides platform independence for non-GUI operating system facilities. A use-after-poison flaw and a heap-based buffer overflow flaw were found in the way NSS parsed certain ASN.1 structures. An attacker could use these flaws to cause NSS to crash or execute arbitrary code with the permissions of the user running an application compiled against the NSS library. (CVE-2015-7181, CVE-2015-7182) A heap-based buffer overflow was found in NSPR. An attacker could use this flaw to cause NSPR to crash or execute arbitrary code with the permissions of the user running an application compiled against the NSPR library. (CVE-2015-7183) Note: Applications using NSPR's PL_ARENA_ALLOCATE, PR_ARENA_ALLOCATE, PL_ARENA_GROW, or PR_ARENA_GROW macros need to be rebuild against the fixed nspr packages to completely resolve the CVE-2015-7183 issue. This erratum includes nss and nss-utils packages rebuilt against the fixed nspr version. Red Hat would like to thank the Mozilla project for reporting these issues. Upstream acknowledges Tyson Smith, David Keeler and Ryan Sleevi as the original reporter. All nss, nss-util and nspr users are advised to upgrade to these updated packages, which contain backported patches to correct these issues. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1269345 - CVE-2015-7181 nss: use-after-poison in sec_asn1d_parse_leaf() (MFSA 2015-133) 1269351 - CVE-2015-7182 nss: ASN.1 decoder heap overflowwhen decoding constructed OCTET STRING that mixes indefinite and definite length encodings (MFSA 2015-133) 1269353 - CVE-2015-7183 nspr: heap-buffer overflow in PL_ARENA_ALLOCATE (MFSA 2015-133) 6. Package List: Red Hat Enterprise Linux Desktop (v. 6): Source: nspr-4.10.8-2.el6_7.src.rpm nss-3.19.1-5.el6_7.src.rpm nss-util-3.19.1-2.el6_7.src.rpm i386: nspr-4.10.8-2.el6_7.i686.rpm nspr-debuginfo-4.10.8-2.el6_7.i686.rpm nss-3.19.1-5.el6_7.i686.rpm nss-debuginfo-3.19.1-5.el6_7.i686.rpm nss-sysinit-3.19.1-5.el6_7.i686.rpm nss-tools-3.19.1-5.el6_7.i686.rpm nss-util-3.19.1-2.el6_7.i686.rpm nss-util-debuginfo-3.19.1-2.el6_7.i686.rpm x86_64: nspr-4.10.8-2.el6_7.i686.rpm nspr-4.10.8-2.el6_7.x86_64.rpm nspr-debuginfo-4.10.8-2.el6_7.i686.rpm nspr-debuginfo-4.10.8-2.el6_7.x86_64.rpm nss-3.19.1-5.el6_7.i686.rpm nss-3.19.1-5.el6_7.x86_64.rpm nss-debuginfo-3.19.1-5.el6_7.i686.rpm nss-debuginfo-3.19.1-5.el6_7.x86_64.rpm nss-sysinit-3.19.1-5.el6_7.x86_64.rpm nss-tools-3.19.1-5.el6_7.x86_64.rpm nss-util-3.19.1-2.el6_7.i686.rpm nss-util-3.19.1-2.el6_7.x86_64.rpm nss-util-debuginfo-3.19.1-2.el6_7.i686.rpm nss-util-debuginfo-3.19.1-2.el6_7.x86_64.rpm Red Hat Enterprise Linux Desktop Optional (v.6): i386: nspr-debuginfo-4.10.8-2.el6_7.i686.rpm nspr-devel-4.10.8-2.el6_7.i686.rpm nss-debuginfo-3.19.1-5.el6_7.i686.rpm nss-devel-3.19.1-5.el6_7.i686.rpm nss-pkcs11-devel-3.19.1-5.el6_7.i686.rpm nss-util-debuginfo-3.19.1-2.el6_7.i686.rpm nss-util-devel-3.19.1-2.el6_7.i686.rpm x86_64: nspr-debuginfo-4.10.8-2.el6_7.i686.rpm nspr-debuginfo-4.10.8-2.el6_7.x86_64.rpm nspr-devel-4.10.8-2.el6_7.i686.rpm nspr-devel-4.10.8-2.el6_7.x86_64.rpm nss-debuginfo-3.19.1-5.el6_7.i686.rpm nss-debuginfo-3.19.1-5.el6_7.x86_64.rpm nss-devel-3.19.1-5.el6_7.i686.rpm nss-devel-3.19.1-5.el6_7.x86_64.rpm nss-pkcs11-devel-3.19.1-5.el6_7.i686.rpm nss-pkcs11-devel-3.19.1-5.el6_7.x86_64.rpm nss-util-debuginfo-3.19.1-2.el6_7.i686.rpm nss-util-debuginfo-3.19.1-2.el6_7.x86_64.rpm nss-util-devel-3.19.1-2.el6_7.i686.rpm nss-util-devel-3.19.1-2.el6_7.x86_64.rpm Red Hat Enterprise Linux HPC Node (v. 6): Source: nspr-4.10.8-2.el6_7.src.rpm nss-3.19.1-5.el6_7.src.rpm nss-util-3.19.1-2.el6_7.src.rpm x86_64: nspr-4.10.8-2.el6_7.i686.rpm nspr-4.10.8-2.el6_7.x86_64.rpm nspr-debuginfo-4.10.8-2.el6_7.i686.rpm nspr-debuginfo-4.10.8-2.el6_7.x86_64.rpm nss-3.19.1-5.el6_7.i686.rpm nss-3.19.1-5.el6_7.x86_64.rpm nss-debuginfo-3.19.1-5.el6_7.i686.rpm nss-debuginfo-3.19.1-5.el6_7.x86_64.rpm nss-sysinit-3.19.1-5.el6_7.x86_64.rpm nss-tools-3.19.1-5.el6_7.x86_64.rpm nss-util-3.19.1-2.el6_7.i686.rpm nss-util-3.19.1-2.el6_7.x86_64.rpm nss-util-debuginfo-3.19.1-2.el6_7.i686.rpm nss-util-debuginfo-3.19.1-2.el6_7.x86_64.rpm Red Hat Enterprise Linux HPC Node Optional (v.6): x86_64: nspr-debuginfo-4.10.8-2.el6_7.i686.rpm nspr-debuginfo-4.10.8-2.el6_7.x86_64.rpm nspr-devel-4.10.8-2.el6_7.i686.rpm nspr-devel-4.10.8-2.el6_7.x86_64.rpm nss-debuginfo-3.19.1-5.el6_7.i686.rpm nss-debuginfo-3.19.1-5.el6_7.x86_64.rpm nss-devel-3.19.1-5.el6_7.i686.rpm nss-devel-3.19.1-5.el6_7.x86_64.rpm nss-pkcs11-devel-3.19.1-5.el6_7.i686.rpm nss-pkcs11-devel-3.19.1-5.el6_7.x86_64.rpm nss-util-debuginfo-3.19.1-2.el6_7.i686.rpm nss-util-debuginfo-3.19.1-2.el6_7.x86_64.rpm nss-util-devel-3.19.1-2.el6_7.i686.rpm nss-util-devel-3.19.1-2.el6_7.x86_64.rpm Red Hat Enterprise Linux Server (v.6): Source: nspr-4.10.8-2.el6_7.src.rpm nss-3.19.1-5.el6_7.src.rpm nss-util-3.19.1-2.el6_7.src.rpm i386: nspr-4.10.8-2.el6_7.i686.rpm nspr-debuginfo-4.10.8-2.el6_7.i686.rpm nspr-devel-4.10.8-2.el6_7.i686.rpm nss-3.19.1-5.el6_7.i686.rpm nss-debuginfo-3.19.1-5.el6_7.i686.rpm nss-devel-3.19.1-5.el6_7.i686.rpm nss-sysinit-3.19.1-5.el6_7.i686.rpm nss-tools-3.19.1-5.el6_7.i686.rpm nss-util-3.19.1-2.el6_7.i686.rpm nss-util-debuginfo-3.19.1-2.el6_7.i686.rpm nss-util-devel-3.19.1-2.el6_7.i686.rpm ppc64: nspr-4.10.8-2.el6_7.ppc.rpm nspr-4.10.8-2.el6_7.ppc64.rpm nspr-debuginfo-4.10.8-2.el6_7.ppc.rpm nspr-debuginfo-4.10.8-2.el6_7.ppc64.rpm nspr-devel-4.10.8-2.el6_7.ppc.rpm nspr-devel-4.10.8-2.el6_7.ppc64.rpm nss-3.19.1-5.el6_7.ppc.rpm nss-3.19.1-5.el6_7.ppc64.rpm nss-debuginfo-3.19.1-5.el6_7.ppc.rpm nss-debuginfo-3.19.1-5.el6_7.ppc64.rpm nss-devel-3.19.1-5.el6_7.ppc.rpm nss-devel-3.19.1-5.el6_7.ppc64.rpm nss-sysinit-3.19.1-5.el6_7.ppc64.rpm nss-tools-3.19.1-5.el6_7.ppc64.rpm nss-util-3.19.1-2.el6_7.ppc.rpm nss-util-3.19.1-2.el6_7.ppc64.rpm nss-util-debuginfo-3.19.1-2.el6_7.ppc.rpm nss-util-debuginfo-3.19.1-2.el6_7.ppc64.rpm nss-util-devel-3.19.1-2.el6_7.ppc.rpm nss-util-devel-3.19.1-2.el6_7.ppc64.rpm s390x: nspr-4.10.8-2.el6_7.s390.rpm nspr-4.10.8-2.el6_7.s390x.rpm nspr-debuginfo-4.10.8-2.el6_7.s390.rpm nspr-debuginfo-4.10.8-2.el6_7.s390x.rpm nspr-devel-4.10.8-2.el6_7.s390.rpm nspr-devel-4.10.8-2.el6_7.s390x.rpm nss-3.19.1-5.el6_7.s390.rpm nss-3.19.1-5.el6_7.s390x.rpm nss-debuginfo-3.19.1-5.el6_7.s390.rpm nss-debuginfo-3.19.1-5.el6_7.s390x.rpm nss-devel-3.19.1-5.el6_7.s390.rpm nss-devel-3.19.1-5.el6_7.s390x.rpm nss-sysinit-3.19.1-5.el6_7.s390x.rpm nss-tools-3.19.1-5.el6_7.s390x.rpm nss-util-3.19.1-2.el6_7.s390.rpm nss-util-3.19.1-2.el6_7.s390x.rpm nss-util-debuginfo-3.19.1-2.el6_7.s390.rpm nss-util-debuginfo-3.19.1-2.el6_7.s390x.rpm nss-util-devel-3.19.1-2.el6_7.s390.rpm nss-util-devel-3.19.1-2.el6_7.s390x.rpm x86_64: nspr-4.10.8-2.el6_7.i686.rpm nspr-4.10.8-2.el6_7.x86_64.rpm nspr-debuginfo-4.10.8-2.el6_7.i686.rpm nspr-debuginfo-4.10.8-2.el6_7.x86_64.rpm nspr-devel-4.10.8-2.el6_7.i686.rpm nspr-devel-4.10.8-2.el6_7.x86_64.rpm nss-3.19.1-5.el6_7.i686.rpm nss-3.19.1-5.el6_7.x86_64.rpm nss-debuginfo-3.19.1-5.el6_7.i686.rpm nss-debuginfo-3.19.1-5.el6_7.x86_64.rpm nss-devel-3.19.1-5.el6_7.i686.rpm nss-devel-3.19.1-5.el6_7.x86_64.rpm nss-sysinit-3.19.1-5.el6_7.x86_64.rpm nss-tools-3.19.1-5.el6_7.x86_64.rpm nss-util-3.19.1-2.el6_7.i686.rpm nss-util-3.19.1-2.el6_7.x86_64.rpm nss-util-debuginfo-3.19.1-2.el6_7.i686.rpm nss-util-debuginfo-3.19.1-2.el6_7.x86_64.rpm nss-util-devel-3.19.1-2.el6_7.i686.rpm nss-util-devel-3.19.1-2.el6_7.x86_64.rpm Red Hat Enterprise Linux Server Optional (v. 6): i386: nss-debuginfo-3.19.1-5.el6_7.i686.rpm nss-pkcs11-devel-3.19.1-5.el6_7.i686.rpm ppc64: nss-debuginfo-3.19.1-5.el6_7.ppc.rpm nss-debuginfo-3.19.1-5.el6_7.ppc64.rpm nss-pkcs11-devel-3.19.1-5.el6_7.ppc.rpm nss-pkcs11-devel-3.19.1-5.el6_7.ppc64.rpm s390x: nss-debuginfo-3.19.1-5.el6_7.s390.rpm nss-debuginfo-3.19.1-5.el6_7.s390x.rpm nss-pkcs11-devel-3.19.1-5.el6_7.s390.rpm nss-pkcs11-devel-3.19.1-5.el6_7.s390x.rpm x86_64: nss-debuginfo-3.19.1-5.el6_7.i686.rpm nss-debuginfo-3.19.1-5.el6_7.x86_64.rpm nss-pkcs11-devel-3.19.1-5.el6_7.i686.rpm nss-pkcs11-devel-3.19.1-5.el6_7.x86_64.rpm Red Hat Enterprise Linux Workstation (v.6): Source: nspr-4.10.8-2.el6_7.src.rpm nss-3.19.1-5.el6_7.src.rpm nss-util-3.19.1-2.el6_7.src.rpm i386: nspr-4.10.8-2.el6_7.i686.rpm nspr-debuginfo-4.10.8-2.el6_7.i686.rpm nspr-devel-4.10.8-2.el6_7.i686.rpm nss-3.19.1-5.el6_7.i686.rpm nss-debuginfo-3.19.1-5.el6_7.i686.rpm nss-devel-3.19.1-5.el6_7.i686.rpm nss-sysinit-3.19.1-5.el6_7.i686.rpm nss-tools-3.19.1-5.el6_7.i686.rpm nss-util-3.19.1-2.el6_7.i686.rpm nss-util-debuginfo-3.19.1-2.el6_7.i686.rpm nss-util-devel-3.19.1-2.el6_7.i686.rpm x86_64: nspr-4.10.8-2.el6_7.i686.rpm nspr-4.10.8-2.el6_7.x86_64.rpm nspr-debuginfo-4.10.8-2.el6_7.i686.rpm nspr-debuginfo-4.10.8-2.el6_7.x86_64.rpm nspr-devel-4.10.8-2.el6_7.i686.rpm nspr-devel-4.10.8-2.el6_7.x86_64.rpm nss-3.19.1-5.el6_7.i686.rpm nss-3.19.1-5.el6_7.x86_64.rpm nss-debuginfo-3.19.1-5.el6_7.i686.rpm nss-debuginfo-3.19.1-5.el6_7.x86_64.rpm nss-devel-3.19.1-5.el6_7.i686.rpm nss-devel-3.19.1-5.el6_7.x86_64.rpm nss-sysinit-3.19.1-5.el6_7.x86_64.rpm nss-tools-3.19.1-5.el6_7.x86_64.rpm nss-util-3.19.1-2.el6_7.i686.rpm nss-util-3.19.1-2.el6_7.x86_64.rpm nss-util-debuginfo-3.19.1-2.el6_7.i686.rpm nss-util-debuginfo-3.19.1-2.el6_7.x86_64.rpm nss-util-devel-3.19.1-2.el6_7.i686.rpm nss-util-devel-3.19.1-2.el6_7.x86_64.rpm Red Hat Enterprise Linux Workstation Optional (v. 6): i386: nss-debuginfo-3.19.1-5.el6_7.i686.rpm nss-pkcs11-devel-3.19.1-5.el6_7.i686.rpm x86_64: nss-debuginfo-3.19.1-5.el6_7.i686.rpm nss-debuginfo-3.19.1-5.el6_7.x86_64.rpm nss-pkcs11-devel-3.19.1-5.el6_7.i686.rpm nss-pkcs11-devel-3.19.1-5.el6_7.x86_64.rpm Red Hat Enterprise Linux Client (v.7): Source: nspr-4.10.8-2.el7_1.src.rpm nss-3.19.1-7.el7_1.2.src.rpm nss-util-3.19.1-4.el7_1.src.rpm x86_64: nspr-4.10.8-2.el7_1.i686.rpm nspr-4.10.8-2.el7_1.x86_64.rpm nspr-debuginfo-4.10.8-2.el7_1.i686.rpm nspr-debuginfo-4.10.8-2.el7_1.x86_64.rpm nss-3.19.1-7.el7_1.2.i686.rpm nss-3.19.1-7.el7_1.2.x86_64.rpm nss-debuginfo-3.19.1-7.el7_1.2.i686.rpm nss-debuginfo-3.19.1-7.el7_1.2.x86_64.rpm nss-sysinit-3.19.1-7.el7_1.2.x86_64.rpm nss-tools-3.19.1-7.el7_1.2.x86_64.rpm nss-util-3.19.1-4.el7_1.i686.rpm nss-util-3.19.1-4.el7_1.x86_64.rpm nss-util-debuginfo-3.19.1-4.el7_1.i686.rpm nss-util-debuginfo-3.19.1-4.el7_1.x86_64.rpm Red Hat Enterprise Linux Client Optional (v. 7): x86_64: nspr-debuginfo-4.10.8-2.el7_1.i686.rpm nspr-debuginfo-4.10.8-2.el7_1.x86_64.rpm nspr-devel-4.10.8-2.el7_1.i686.rpm nspr-devel-4.10.8-2.el7_1.x86_64.rpm nss-debuginfo-3.19.1-7.el7_1.2.i686.rpm nss-debuginfo-3.19.1-7.el7_1.2.x86_64.rpm nss-devel-3.19.1-7.el7_1.2.i686.rpm nss-devel-3.19.1-7.el7_1.2.x86_64.rpm nss-pkcs11-devel-3.19.1-7.el7_1.2.i686.rpm nss-pkcs11-devel-3.19.1-7.el7_1.2.x86_64.rpm nss-util-debuginfo-3.19.1-4.el7_1.i686.rpm nss-util-debuginfo-3.19.1-4.el7_1.x86_64.rpm nss-util-devel-3.19.1-4.el7_1.i686.rpm nss-util-devel-3.19.1-4.el7_1.x86_64.rpm Red Hat Enterprise Linux ComputeNode (v. 7): Source: nspr-4.10.8-2.el7_1.src.rpm nss-3.19.1-7.el7_1.2.src.rpm nss-util-3.19.1-4.el7_1.src.rpm x86_64: nspr-4.10.8-2.el7_1.i686.rpm nspr-4.10.8-2.el7_1.x86_64.rpm nspr-debuginfo-4.10.8-2.el7_1.i686.rpm nspr-debuginfo-4.10.8-2.el7_1.x86_64.rpm nss-3.19.1-7.el7_1.2.i686.rpm nss-3.19.1-7.el7_1.2.x86_64.rpm nss-debuginfo-3.19.1-7.el7_1.2.i686.rpm nss-debuginfo-3.19.1-7.el7_1.2.x86_64.rpm nss-sysinit-3.19.1-7.el7_1.2.x86_64.rpm nss-tools-3.19.1-7.el7_1.2.x86_64.rpm nss-util-3.19.1-4.el7_1.i686.rpm nss-util-3.19.1-4.el7_1.x86_64.rpm nss-util-debuginfo-3.19.1-4.el7_1.i686.rpm nss-util-debuginfo-3.19.1-4.el7_1.x86_64.rpm Red Hat Enterprise Linux ComputeNode Optional (v.7): x86_64: nspr-debuginfo-4.10.8-2.el7_1.i686.rpm nspr-debuginfo-4.10.8-2.el7_1.x86_64.rpm nspr-devel-4.10.8-2.el7_1.i686.rpm nspr-devel-4.10.8-2.el7_1.x86_64.rpm nss-debuginfo-3.19.1-7.el7_1.2.i686.rpm nss-debuginfo-3.19.1-7.el7_1.2.x86_64.rpm nss-devel-3.19.1-7.el7_1.2.i686.rpm nss-devel-3.19.1-7.el7_1.2.x86_64.rpm nss-pkcs11-devel-3.19.1-7.el7_1.2.i686.rpm nss-pkcs11-devel-3.19.1-7.el7_1.2.x86_64.rpm nss-util-debuginfo-3.19.1-4.el7_1.i686.rpm nss-util-debuginfo-3.19.1-4.el7_1.x86_64.rpm nss-util-devel-3.19.1-4.el7_1.i686.rpm nss-util-devel-3.19.1-4.el7_1.x86_64.rpm Red Hat Enterprise Linux Server (v.7): Source: nspr-4.10.8-2.el7_1.src.rpm nss-3.19.1-7.el7_1.2.src.rpm nss-util-3.19.1-4.el7_1.src.rpm ppc64: nspr-4.10.8-2.el7_1.ppc.rpm nspr-4.10.8-2.el7_1.ppc64.rpm nspr-debuginfo-4.10.8-2.el7_1.ppc.rpm nspr-debuginfo-4.10.8-2.el7_1.ppc64.rpm nspr-devel-4.10.8-2.el7_1.ppc.rpm nspr-devel-4.10.8-2.el7_1.ppc64.rpm nss-3.19.1-7.el7_1.2.ppc.rpm nss-3.19.1-7.el7_1.2.ppc64.rpm nss-debuginfo-3.19.1-7.el7_1.2.ppc.rpm nss-debuginfo-3.19.1-7.el7_1.2.ppc64.rpm nss-devel-3.19.1-7.el7_1.2.ppc.rpm nss-devel-3.19.1-7.el7_1.2.ppc64.rpm nss-sysinit-3.19.1-7.el7_1.2.ppc64.rpm nss-tools-3.19.1-7.el7_1.2.ppc64.rpm nss-util-3.19.1-4.el7_1.ppc.rpm nss-util-3.19.1-4.el7_1.ppc64.rpm nss-util-debuginfo-3.19.1-4.el7_1.ppc.rpm nss-util-debuginfo-3.19.1-4.el7_1.ppc64.rpm nss-util-devel-3.19.1-4.el7_1.ppc.rpm nss-util-devel-3.19.1-4.el7_1.ppc64.rpm s390x: nspr-4.10.8-2.el7_1.s390.rpm nspr-4.10.8-2.el7_1.s390x.rpm nspr-debuginfo-4.10.8-2.el7_1.s390.rpm nspr-debuginfo-4.10.8-2.el7_1.s390x.rpm nspr-devel-4.10.8-2.el7_1.s390.rpm nspr-devel-4.10.8-2.el7_1.s390x.rpm nss-3.19.1-7.el7_1.2.s390.rpm nss-3.19.1-7.el7_1.2.s390x.rpm nss-debuginfo-3.19.1-7.el7_1.2.s390.rpm nss-debuginfo-3.19.1-7.el7_1.2.s390x.rpm nss-devel-3.19.1-7.el7_1.2.s390.rpm nss-devel-3.19.1-7.el7_1.2.s390x.rpm nss-sysinit-3.19.1-7.el7_1.2.s390x.rpm nss-tools-3.19.1-7.el7_1.2.s390x.rpm nss-util-3.19.1-4.el7_1.s390.rpm nss-util-3.19.1-4.el7_1.s390x.rpm nss-util-debuginfo-3.19.1-4.el7_1.s390.rpm nss-util-debuginfo-3.19.1-4.el7_1.s390x.rpm nss-util-devel-3.19.1-4.el7_1.s390.rpm nss-util-devel-3.19.1-4.el7_1.s390x.rpm x86_64: nspr-4.10.8-2.el7_1.i686.rpm nspr-4.10.8-2.el7_1.x86_64.rpm nspr-debuginfo-4.10.8-2.el7_1.i686.rpm nspr-debuginfo-4.10.8-2.el7_1.x86_64.rpm nspr-devel-4.10.8-2.el7_1.i686.rpm nspr-devel-4.10.8-2.el7_1.x86_64.rpm nss-3.19.1-7.el7_1.2.i686.rpm nss-3.19.1-7.el7_1.2.x86_64.rpm nss-debuginfo-3.19.1-7.el7_1.2.i686.rpm nss-debuginfo-3.19.1-7.el7_1.2.x86_64.rpm nss-devel-3.19.1-7.el7_1.2.i686.rpm nss-devel-3.19.1-7.el7_1.2.x86_64.rpm nss-sysinit-3.19.1-7.el7_1.2.x86_64.rpm nss-tools-3.19.1-7.el7_1.2.x86_64.rpm nss-util-3.19.1-4.el7_1.i686.rpm nss-util-3.19.1-4.el7_1.x86_64.rpm nss-util-debuginfo-3.19.1-4.el7_1.i686.rpm nss-util-debuginfo-3.19.1-4.el7_1.x86_64.rpm nss-util-devel-3.19.1-4.el7_1.i686.rpm nss-util-devel-3.19.1-4.el7_1.x86_64.rpm Red Hat Enterprise Linux Server (v. 7): Source: nspr-4.10.8-2.ael7b_1.src.rpm nss-3.19.1-7.ael7b_1.2.src.rpm nss-util-3.19.1-4.ael7b_1.src.rpm ppc64le: nspr-4.10.8-2.ael7b_1.ppc64le.rpm nspr-debuginfo-4.10.8-2.ael7b_1.ppc64le.rpm nspr-devel-4.10.8-2.ael7b_1.ppc64le.rpm nss-3.19.1-7.ael7b_1.2.ppc64le.rpm nss-debuginfo-3.19.1-7.ael7b_1.2.ppc64le.rpm nss-devel-3.19.1-7.ael7b_1.2.ppc64le.rpm nss-sysinit-3.19.1-7.ael7b_1.2.ppc64le.rpm nss-tools-3.19.1-7.ael7b_1.2.ppc64le.rpm nss-util-3.19.1-4.ael7b_1.ppc64le.rpm nss-util-debuginfo-3.19.1-4.ael7b_1.ppc64le.rpm nss-util-devel-3.19.1-4.ael7b_1.ppc64le.rpm Red Hat Enterprise Linux Server Optional (v. 7): ppc64: nss-debuginfo-3.19.1-7.el7_1.2.ppc.rpm nss-debuginfo-3.19.1-7.el7_1.2.ppc64.rpm nss-pkcs11-devel-3.19.1-7.el7_1.2.ppc.rpm nss-pkcs11-devel-3.19.1-7.el7_1.2.ppc64.rpm s390x: nss-debuginfo-3.19.1-7.el7_1.2.s390.rpm nss-debuginfo-3.19.1-7.el7_1.2.s390x.rpm nss-pkcs11-devel-3.19.1-7.el7_1.2.s390.rpm nss-pkcs11-devel-3.19.1-7.el7_1.2.s390x.rpm x86_64: nss-debuginfo-3.19.1-7.el7_1.2.i686.rpm nss-debuginfo-3.19.1-7.el7_1.2.x86_64.rpm nss-pkcs11-devel-3.19.1-7.el7_1.2.i686.rpm nss-pkcs11-devel-3.19.1-7.el7_1.2.x86_64.rpm Red Hat Enterprise Linux Server Optional (v. 7): ppc64le: nss-debuginfo-3.19.1-7.ael7b_1.2.ppc64le.rpm nss-pkcs11-devel-3.19.1-7.ael7b_1.2.ppc64le.rpm Red Hat Enterprise Linux Workstation (v.7): Source: nspr-4.10.8-2.el7_1.src.rpm nss-3.19.1-7.el7_1.2.src.rpm nss-util-3.19.1-4.el7_1.src.rpm x86_64: nspr-4.10.8-2.el7_1.i686.rpm nspr-4.10.8-2.el7_1.x86_64.rpm nspr-debuginfo-4.10.8-2.el7_1.i686.rpm nspr-debuginfo-4.10.8-2.el7_1.x86_64.rpm nspr-devel-4.10.8-2.el7_1.i686.rpm nspr-devel-4.10.8-2.el7_1.x86_64.rpm nss-3.19.1-7.el7_1.2.i686.rpm nss-3.19.1-7.el7_1.2.x86_64.rpm nss-debuginfo-3.19.1-7.el7_1.2.i686.rpm nss-debuginfo-3.19.1-7.el7_1.2.x86_64.rpm nss-devel-3.19.1-7.el7_1.2.i686.rpm nss-devel-3.19.1-7.el7_1.2.x86_64.rpm nss-sysinit-3.19.1-7.el7_1.2.x86_64.rpm nss-tools-3.19.1-7.el7_1.2.x86_64.rpm nss-util-3.19.1-4.el7_1.i686.rpm nss-util-3.19.1-4.el7_1.x86_64.rpm nss-util-debuginfo-3.19.1-4.el7_1.i686.rpm nss-util-debuginfo-3.19.1-4.el7_1.x86_64.rpm nss-util-devel-3.19.1-4.el7_1.i686.rpm nss-util-devel-3.19.1-4.el7_1.x86_64.rpm Red Hat Enterprise Linux Workstation Optional (v. 7): x86_64: nss-debuginfo-3.19.1-7.el7_1.2.i686.rpm nss-debuginfo-3.19.1-7.el7_1.2.x86_64.rpm nss-pkcs11-devel-3.19.1-7.el7_1.2.i686.rpm nss-pkcs11-devel-3.19.1-7.el7_1.2.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2015-7181 https://access.redhat.com/security/cve/CVE-2015-7182 https://access.redhat.com/security/cve/CVE-2015-7183 https://access.redhat.com/security/updates/classification/#critical 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2015 Red Hat, Inc. . Red Hat issues urgent security updates for nss, nss-util, and nspr in Enterprise Linux versions 6 and 7, resolving several vulnerabilities.. NSS Update, Red Hat Advisory, Security Issue, Buffer Overflow, Use-After-Poison. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Mar 14, 2017 Critical Red Hat
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisoryred hat enterprise linuximportant patch

Red Hat Enterprise Linux 7: RHSA-2014:1948-01 Important: TLS Downgrade

Updated nss, nss-util, and nss-softokn packages that contain a patch to mitigate the CVE-2014-3566 issue, fix a number of bugs, and add various enhancements are now available for Red Hat Enterprise Linux 5, 6, and 7. Red Hat Product Security has rated this update as having Important . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Important: nss, nss-util, and nss-softokn security, bug fix, and enhancement update Advisory ID: RHSA-2014:1948-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2014:1948.html Issue date: 2014-12-02 ==================================================================== 1. Summary: Updated nss, nss-util, and nss-softokn packages that contain a patch to mitigate the CVE-2014-3566 issue, fix a number of bugs, and add various enhancements are now available for Red Hat Enterprise Linux 5, 6, and 7. Red Hat Product Security has rated this update as having Important security impact. 2. Relevant releases/architectures: RHEL Desktop Workstation (v. 5 client) - i386, x86_64 Red Hat Enterprise Linux (v. 5 server) - i386, ia64, ppc, s390x, x86_64 Red Hat Enterprise Linux Client (v. 7) - x86_64 Red Hat Enterprise Linux Client Optional (v. 7) - x86_64 Red Hat Enterprise Linux ComputeNode (v. 7) - x86_64 Red Hat Enterprise Linux ComputeNode Optional (v. 7) - x86_64 Red Hat Enterprise Linux Desktop (v. 5 client) - i386, x86_64 Red Hat Enterprise Linux Desktop (v. 6) - i386, x86_64 Red Hat Enterprise Linux Desktop Optional (v. 6) - i386, x86_64 Red Hat Enterprise Linux HPC Node (v. 6) - x86_64 Red Hat Enterprise Linux HPC Node Optional (v. 6) - x86_64 Red Hat Enterprise Linux Server (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Server (v. 7) - ppc64, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v.7) - ppc64, s390x, x86_64 Red Hat Enterprise Linux Workstation (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation (v. 7) - x86_64 Red Hat Enterprise Linux Workstation Optional (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation Optional (v. 7) - x86_64 3. Description: Network Security Services (NSS) is a set of libraries designed to support the cross-platform development of security-enabled client and server applications. Netscape Portable Runtime (NSPR) provides platform independence for non-GUI operating system facilities. This update adds support for the TLS Fallback Signaling Cipher Suite Value (TLS_FALLBACK_SCSV), which can be used to prevent protocol downgrade attacks against applications which re-connect using a lower SSL/TLS protocol version when the initial connection indicating the highest supported protocol version fails. This can prevent a forceful downgrade of the communication to SSL 3.0. The SSL 3.0 protocol was found to be vulnerable to the padding oracle attack when using block cipher suites in cipher block chaining (CBC) mode. This issue is identified as CVE-2014-3566, and also known under the alias POODLE. This SSL 3.0 protocol flaw will not be addressed in a future update; it is recommended that users configure their applications to require at least TLS protocol version 1.0 for secure communication. For additional information about this flaw, see the Knowledgebase article at https://access.redhat.com/articles/1232123 The nss, nss-util, and nss-softokn packages have been upgraded to upstream version 3.16.2.3, which provides a number of bug fixes and enhancements over the previous version, and adds the support for Mozilla Firefox 31.3. (BZ#1158159, BZ#1165003, BZ#1165525) Users of nss, nss-util, and nss-softokn are advised to upgrade to these updated packages, which contain a backported patch to mitigate the CVE-2014-3566 issue, fix these bugs, and add these enhancements. After installing this update, applications using NSS or NSPR must be restarted for this update to takeeffect. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1152789 - CVE-2014-3566 SSL/TLS: Padding Oracle On Downgraded Legacy Encryption attack 1158159 - Upgrade to NSS 3.16.2.3 for Firefox 31.3 [rhel-5.11.z] 1165003 - Upgrade to NSS 3.16.2.3 for Firefox 31.3 [rhel-6.6.Z] 1165525 - Upgrade to NSS 3.16.2.3 for Firefox 31.3 [rhel-7.0.Z] 6. Package List: Red Hat Enterprise Linux Desktop (v. 5 client): Source: nss-3.16.2.3-1.el5_11.src.rpm i386: nss-3.16.2.3-1.el5_11.i386.rpm nss-debuginfo-3.16.2.3-1.el5_11.i386.rpm nss-tools-3.16.2.3-1.el5_11.i386.rpm x86_64: nss-3.16.2.3-1.el5_11.i386.rpm nss-3.16.2.3-1.el5_11.x86_64.rpm nss-debuginfo-3.16.2.3-1.el5_11.i386.rpm nss-debuginfo-3.16.2.3-1.el5_11.x86_64.rpm nss-tools-3.16.2.3-1.el5_11.x86_64.rpm RHEL Desktop Workstation (v. 5 client): Source: nss-3.16.2.3-1.el5_11.src.rpm i386: nss-debuginfo-3.16.2.3-1.el5_11.i386.rpm nss-devel-3.16.2.3-1.el5_11.i386.rpm nss-pkcs11-devel-3.16.2.3-1.el5_11.i386.rpm x86_64: nss-debuginfo-3.16.2.3-1.el5_11.i386.rpm nss-debuginfo-3.16.2.3-1.el5_11.x86_64.rpm nss-devel-3.16.2.3-1.el5_11.i386.rpm nss-devel-3.16.2.3-1.el5_11.x86_64.rpm nss-pkcs11-devel-3.16.2.3-1.el5_11.i386.rpm nss-pkcs11-devel-3.16.2.3-1.el5_11.x86_64.rpm Red Hat Enterprise Linux (v. 5server): Source: nss-3.16.2.3-1.el5_11.src.rpm i386: nss-3.16.2.3-1.el5_11.i386.rpm nss-debuginfo-3.16.2.3-1.el5_11.i386.rpm nss-devel-3.16.2.3-1.el5_11.i386.rpm nss-pkcs11-devel-3.16.2.3-1.el5_11.i386.rpm nss-tools-3.16.2.3-1.el5_11.i386.rpm ia64: nss-3.16.2.3-1.el5_11.i386.rpm nss-3.16.2.3-1.el5_11.ia64.rpm nss-debuginfo-3.16.2.3-1.el5_11.i386.rpm nss-debuginfo-3.16.2.3-1.el5_11.ia64.rpm nss-devel-3.16.2.3-1.el5_11.ia64.rpm nss-pkcs11-devel-3.16.2.3-1.el5_11.ia64.rpm nss-tools-3.16.2.3-1.el5_11.ia64.rpm ppc: nss-3.16.2.3-1.el5_11.ppc.rpm nss-3.16.2.3-1.el5_11.ppc64.rpm nss-debuginfo-3.16.2.3-1.el5_11.ppc.rpm nss-debuginfo-3.16.2.3-1.el5_11.ppc64.rpm nss-devel-3.16.2.3-1.el5_11.ppc.rpm nss-devel-3.16.2.3-1.el5_11.ppc64.rpm nss-pkcs11-devel-3.16.2.3-1.el5_11.ppc.rpm nss-pkcs11-devel-3.16.2.3-1.el5_11.ppc64.rpm nss-tools-3.16.2.3-1.el5_11.ppc.rpm s390x: nss-3.16.2.3-1.el5_11.s390.rpm nss-3.16.2.3-1.el5_11.s390x.rpm nss-debuginfo-3.16.2.3-1.el5_11.s390.rpm nss-debuginfo-3.16.2.3-1.el5_11.s390x.rpm nss-devel-3.16.2.3-1.el5_11.s390.rpm nss-devel-3.16.2.3-1.el5_11.s390x.rpm nss-pkcs11-devel-3.16.2.3-1.el5_11.s390.rpm nss-pkcs11-devel-3.16.2.3-1.el5_11.s390x.rpm nss-tools-3.16.2.3-1.el5_11.s390x.rpm x86_64: nss-3.16.2.3-1.el5_11.i386.rpm nss-3.16.2.3-1.el5_11.x86_64.rpm nss-debuginfo-3.16.2.3-1.el5_11.i386.rpm nss-debuginfo-3.16.2.3-1.el5_11.x86_64.rpm nss-devel-3.16.2.3-1.el5_11.i386.rpm nss-devel-3.16.2.3-1.el5_11.x86_64.rpm nss-pkcs11-devel-3.16.2.3-1.el5_11.i386.rpm nss-pkcs11-devel-3.16.2.3-1.el5_11.x86_64.rpm nss-tools-3.16.2.3-1.el5_11.x86_64.rpm Red Hat Enterprise Linux Desktop (v.6): Source: nss-3.16.2.3-3.el6_6.src.rpm nss-util-3.16.2.3-2.el6_6.src.rpm i386: nss-3.16.2.3-3.el6_6.i686.rpm nss-debuginfo-3.16.2.3-3.el6_6.i686.rpm nss-sysinit-3.16.2.3-3.el6_6.i686.rpm nss-tools-3.16.2.3-3.el6_6.i686.rpm nss-util-3.16.2.3-2.el6_6.i686.rpm nss-util-debuginfo-3.16.2.3-2.el6_6.i686.rpm x86_64: nss-3.16.2.3-3.el6_6.i686.rpm nss-3.16.2.3-3.el6_6.x86_64.rpm nss-debuginfo-3.16.2.3-3.el6_6.i686.rpm nss-debuginfo-3.16.2.3-3.el6_6.x86_64.rpm nss-sysinit-3.16.2.3-3.el6_6.x86_64.rpm nss-tools-3.16.2.3-3.el6_6.x86_64.rpm nss-util-3.16.2.3-2.el6_6.i686.rpm nss-util-3.16.2.3-2.el6_6.x86_64.rpm nss-util-debuginfo-3.16.2.3-2.el6_6.i686.rpm nss-util-debuginfo-3.16.2.3-2.el6_6.x86_64.rpm Red Hat Enterprise Linux Desktop Optional (v. 6): i386: nss-debuginfo-3.16.2.3-3.el6_6.i686.rpm nss-devel-3.16.2.3-3.el6_6.i686.rpm nss-pkcs11-devel-3.16.2.3-3.el6_6.i686.rpm nss-util-debuginfo-3.16.2.3-2.el6_6.i686.rpm nss-util-devel-3.16.2.3-2.el6_6.i686.rpm x86_64: nss-debuginfo-3.16.2.3-3.el6_6.i686.rpm nss-debuginfo-3.16.2.3-3.el6_6.x86_64.rpm nss-devel-3.16.2.3-3.el6_6.i686.rpm nss-devel-3.16.2.3-3.el6_6.x86_64.rpm nss-pkcs11-devel-3.16.2.3-3.el6_6.i686.rpm nss-pkcs11-devel-3.16.2.3-3.el6_6.x86_64.rpm nss-util-debuginfo-3.16.2.3-2.el6_6.i686.rpm nss-util-debuginfo-3.16.2.3-2.el6_6.x86_64.rpm nss-util-devel-3.16.2.3-2.el6_6.i686.rpm nss-util-devel-3.16.2.3-2.el6_6.x86_64.rpm Red Hat Enterprise Linux HPC Node (v. 6): Source: nss-3.16.2.3-3.el6_6.src.rpm nss-util-3.16.2.3-2.el6_6.src.rpm x86_64: nss-3.16.2.3-3.el6_6.i686.rpm nss-3.16.2.3-3.el6_6.x86_64.rpm nss-debuginfo-3.16.2.3-3.el6_6.i686.rpm nss-debuginfo-3.16.2.3-3.el6_6.x86_64.rpm nss-sysinit-3.16.2.3-3.el6_6.x86_64.rpm nss-tools-3.16.2.3-3.el6_6.x86_64.rpm nss-util-3.16.2.3-2.el6_6.i686.rpm nss-util-3.16.2.3-2.el6_6.x86_64.rpm nss-util-debuginfo-3.16.2.3-2.el6_6.i686.rpm nss-util-debuginfo-3.16.2.3-2.el6_6.x86_64.rpm Red Hat Enterprise Linux HPC Node Optional (v.6): x86_64: nss-debuginfo-3.16.2.3-3.el6_6.i686.rpm nss-debuginfo-3.16.2.3-3.el6_6.x86_64.rpm nss-devel-3.16.2.3-3.el6_6.i686.rpm nss-devel-3.16.2.3-3.el6_6.x86_64.rpm nss-pkcs11-devel-3.16.2.3-3.el6_6.i686.rpm nss-pkcs11-devel-3.16.2.3-3.el6_6.x86_64.rpm nss-util-debuginfo-3.16.2.3-2.el6_6.i686.rpm nss-util-debuginfo-3.16.2.3-2.el6_6.x86_64.rpm nss-util-devel-3.16.2.3-2.el6_6.i686.rpm nss-util-devel-3.16.2.3-2.el6_6.x86_64.rpm Red Hat Enterprise Linux Server (v.6): Source: nss-3.16.2.3-3.el6_6.src.rpm nss-util-3.16.2.3-2.el6_6.src.rpm i386: nss-3.16.2.3-3.el6_6.i686.rpm nss-debuginfo-3.16.2.3-3.el6_6.i686.rpm nss-devel-3.16.2.3-3.el6_6.i686.rpm nss-sysinit-3.16.2.3-3.el6_6.i686.rpm nss-tools-3.16.2.3-3.el6_6.i686.rpm nss-util-3.16.2.3-2.el6_6.i686.rpm nss-util-debuginfo-3.16.2.3-2.el6_6.i686.rpm nss-util-devel-3.16.2.3-2.el6_6.i686.rpm ppc64: nss-3.16.2.3-3.el6_6.ppc.rpm nss-3.16.2.3-3.el6_6.ppc64.rpm nss-debuginfo-3.16.2.3-3.el6_6.ppc.rpm nss-debuginfo-3.16.2.3-3.el6_6.ppc64.rpm nss-devel-3.16.2.3-3.el6_6.ppc.rpm nss-devel-3.16.2.3-3.el6_6.ppc64.rpm nss-sysinit-3.16.2.3-3.el6_6.ppc64.rpm nss-tools-3.16.2.3-3.el6_6.ppc64.rpm nss-util-3.16.2.3-2.el6_6.ppc.rpm nss-util-3.16.2.3-2.el6_6.ppc64.rpm nss-util-debuginfo-3.16.2.3-2.el6_6.ppc.rpm nss-util-debuginfo-3.16.2.3-2.el6_6.ppc64.rpm nss-util-devel-3.16.2.3-2.el6_6.ppc.rpm nss-util-devel-3.16.2.3-2.el6_6.ppc64.rpm s390x: nss-3.16.2.3-3.el6_6.s390.rpm nss-3.16.2.3-3.el6_6.s390x.rpm nss-debuginfo-3.16.2.3-3.el6_6.s390.rpm nss-debuginfo-3.16.2.3-3.el6_6.s390x.rpm nss-devel-3.16.2.3-3.el6_6.s390.rpm nss-devel-3.16.2.3-3.el6_6.s390x.rpm nss-sysinit-3.16.2.3-3.el6_6.s390x.rpm nss-tools-3.16.2.3-3.el6_6.s390x.rpm nss-util-3.16.2.3-2.el6_6.s390.rpm nss-util-3.16.2.3-2.el6_6.s390x.rpm nss-util-debuginfo-3.16.2.3-2.el6_6.s390.rpm nss-util-debuginfo-3.16.2.3-2.el6_6.s390x.rpm nss-util-devel-3.16.2.3-2.el6_6.s390.rpm nss-util-devel-3.16.2.3-2.el6_6.s390x.rpm x86_64: nss-3.16.2.3-3.el6_6.i686.rpm nss-3.16.2.3-3.el6_6.x86_64.rpm nss-debuginfo-3.16.2.3-3.el6_6.i686.rpm nss-debuginfo-3.16.2.3-3.el6_6.x86_64.rpm nss-devel-3.16.2.3-3.el6_6.i686.rpm nss-devel-3.16.2.3-3.el6_6.x86_64.rpm nss-sysinit-3.16.2.3-3.el6_6.x86_64.rpm nss-tools-3.16.2.3-3.el6_6.x86_64.rpm nss-util-3.16.2.3-2.el6_6.i686.rpm nss-util-3.16.2.3-2.el6_6.x86_64.rpm nss-util-debuginfo-3.16.2.3-2.el6_6.i686.rpm nss-util-debuginfo-3.16.2.3-2.el6_6.x86_64.rpm nss-util-devel-3.16.2.3-2.el6_6.i686.rpm nss-util-devel-3.16.2.3-2.el6_6.x86_64.rpm Red Hat Enterprise LinuxServer Optional (v. 6): i386: nss-debuginfo-3.16.2.3-3.el6_6.i686.rpm nss-pkcs11-devel-3.16.2.3-3.el6_6.i686.rpm ppc64: nss-debuginfo-3.16.2.3-3.el6_6.ppc.rpm nss-debuginfo-3.16.2.3-3.el6_6.ppc64.rpm nss-pkcs11-devel-3.16.2.3-3.el6_6.ppc.rpm nss-pkcs11-devel-3.16.2.3-3.el6_6.ppc64.rpm s390x: nss-debuginfo-3.16.2.3-3.el6_6.s390.rpm nss-debuginfo-3.16.2.3-3.el6_6.s390x.rpm nss-pkcs11-devel-3.16.2.3-3.el6_6.s390.rpm nss-pkcs11-devel-3.16.2.3-3.el6_6.s390x.rpm x86_64: nss-debuginfo-3.16.2.3-3.el6_6.i686.rpm nss-debuginfo-3.16.2.3-3.el6_6.x86_64.rpm nss-pkcs11-devel-3.16.2.3-3.el6_6.i686.rpm nss-pkcs11-devel-3.16.2.3-3.el6_6.x86_64.rpm Red Hat Enterprise Linux Workstation (v. 6): Source: nss-3.16.2.3-3.el6_6.src.rpm nss-util-3.16.2.3-2.el6_6.src.rpm i386: nss-3.16.2.3-3.el6_6.i686.rpm nss-debuginfo-3.16.2.3-3.el6_6.i686.rpm nss-devel-3.16.2.3-3.el6_6.i686.rpm nss-sysinit-3.16.2.3-3.el6_6.i686.rpm nss-tools-3.16.2.3-3.el6_6.i686.rpm nss-util-3.16.2.3-2.el6_6.i686.rpm nss-util-debuginfo-3.16.2.3-2.el6_6.i686.rpm nss-util-devel-3.16.2.3-2.el6_6.i686.rpm x86_64: nss-3.16.2.3-3.el6_6.i686.rpm nss-3.16.2.3-3.el6_6.x86_64.rpm nss-debuginfo-3.16.2.3-3.el6_6.i686.rpm nss-debuginfo-3.16.2.3-3.el6_6.x86_64.rpm nss-devel-3.16.2.3-3.el6_6.i686.rpm nss-devel-3.16.2.3-3.el6_6.x86_64.rpm nss-sysinit-3.16.2.3-3.el6_6.x86_64.rpm nss-tools-3.16.2.3-3.el6_6.x86_64.rpm nss-util-3.16.2.3-2.el6_6.i686.rpm nss-util-3.16.2.3-2.el6_6.x86_64.rpm nss-util-debuginfo-3.16.2.3-2.el6_6.i686.rpm nss-util-debuginfo-3.16.2.3-2.el6_6.x86_64.rpm nss-util-devel-3.16.2.3-2.el6_6.i686.rpm nss-util-devel-3.16.2.3-2.el6_6.x86_64.rpm Red Hat Enterprise Linux Workstation Optional (v. 6): i386: nss-debuginfo-3.16.2.3-3.el6_6.i686.rpm nss-pkcs11-devel-3.16.2.3-3.el6_6.i686.rpm x86_64: nss-debuginfo-3.16.2.3-3.el6_6.i686.rpm nss-debuginfo-3.16.2.3-3.el6_6.x86_64.rpm nss-pkcs11-devel-3.16.2.3-3.el6_6.i686.rpm nss-pkcs11-devel-3.16.2.3-3.el6_6.x86_64.rpm Red Hat Enterprise Linux Client (v.7): Source: nss-3.16.2.3-2.el7_0.src.rpm nss-softokn-3.16.2.3-1.el7_0.src.rpm nss-util-3.16.2.3-1.el7_0.src.rpm x86_64: nss-3.16.2.3-2.el7_0.i686.rpm nss-3.16.2.3-2.el7_0.x86_64.rpm nss-debuginfo-3.16.2.3-2.el7_0.i686.rpm nss-debuginfo-3.16.2.3-2.el7_0.x86_64.rpm nss-softokn-3.16.2.3-1.el7_0.i686.rpm nss-softokn-3.16.2.3-1.el7_0.x86_64.rpm nss-softokn-debuginfo-3.16.2.3-1.el7_0.i686.rpm nss-softokn-debuginfo-3.16.2.3-1.el7_0.x86_64.rpm nss-softokn-freebl-3.16.2.3-1.el7_0.i686.rpm nss-softokn-freebl-3.16.2.3-1.el7_0.x86_64.rpm nss-sysinit-3.16.2.3-2.el7_0.x86_64.rpm nss-tools-3.16.2.3-2.el7_0.x86_64.rpm nss-util-3.16.2.3-1.el7_0.i686.rpm nss-util-3.16.2.3-1.el7_0.x86_64.rpm nss-util-debuginfo-3.16.2.3-1.el7_0.i686.rpm nss-util-debuginfo-3.16.2.3-1.el7_0.x86_64.rpm Red Hat Enterprise Linux Client Optional (v. 7): x86_64: nss-debuginfo-3.16.2.3-2.el7_0.i686.rpm nss-debuginfo-3.16.2.3-2.el7_0.x86_64.rpm nss-devel-3.16.2.3-2.el7_0.i686.rpm nss-devel-3.16.2.3-2.el7_0.x86_64.rpm nss-pkcs11-devel-3.16.2.3-2.el7_0.i686.rpm nss-pkcs11-devel-3.16.2.3-2.el7_0.x86_64.rpm nss-softokn-debuginfo-3.16.2.3-1.el7_0.i686.rpm nss-softokn-debuginfo-3.16.2.3-1.el7_0.x86_64.rpm nss-softokn-devel-3.16.2.3-1.el7_0.i686.rpm nss-softokn-devel-3.16.2.3-1.el7_0.x86_64.rpm nss-softokn-freebl-devel-3.16.2.3-1.el7_0.i686.rpm nss-softokn-freebl-devel-3.16.2.3-1.el7_0.x86_64.rpm nss-util-debuginfo-3.16.2.3-1.el7_0.i686.rpm nss-util-debuginfo-3.16.2.3-1.el7_0.x86_64.rpm nss-util-devel-3.16.2.3-1.el7_0.i686.rpm nss-util-devel-3.16.2.3-1.el7_0.x86_64.rpm Red Hat Enterprise Linux ComputeNode (v.7): Source: nss-3.16.2.3-2.el7_0.src.rpm nss-softokn-3.16.2.3-1.el7_0.src.rpm nss-util-3.16.2.3-1.el7_0.src.rpm x86_64: nss-3.16.2.3-2.el7_0.i686.rpm nss-3.16.2.3-2.el7_0.x86_64.rpm nss-debuginfo-3.16.2.3-2.el7_0.i686.rpm nss-debuginfo-3.16.2.3-2.el7_0.x86_64.rpm nss-softokn-3.16.2.3-1.el7_0.i686.rpm nss-softokn-3.16.2.3-1.el7_0.x86_64.rpm nss-softokn-debuginfo-3.16.2.3-1.el7_0.i686.rpm nss-softokn-debuginfo-3.16.2.3-1.el7_0.x86_64.rpm nss-softokn-freebl-3.16.2.3-1.el7_0.i686.rpm nss-softokn-freebl-3.16.2.3-1.el7_0.x86_64.rpm nss-sysinit-3.16.2.3-2.el7_0.x86_64.rpm nss-tools-3.16.2.3-2.el7_0.x86_64.rpm nss-util-3.16.2.3-1.el7_0.i686.rpm nss-util-3.16.2.3-1.el7_0.x86_64.rpm nss-util-debuginfo-3.16.2.3-1.el7_0.i686.rpm nss-util-debuginfo-3.16.2.3-1.el7_0.x86_64.rpm Red Hat Enterprise Linux ComputeNode Optional (v. 7): x86_64: nss-debuginfo-3.16.2.3-2.el7_0.i686.rpm nss-debuginfo-3.16.2.3-2.el7_0.x86_64.rpm nss-devel-3.16.2.3-2.el7_0.i686.rpm nss-devel-3.16.2.3-2.el7_0.x86_64.rpm nss-pkcs11-devel-3.16.2.3-2.el7_0.i686.rpm nss-pkcs11-devel-3.16.2.3-2.el7_0.x86_64.rpm nss-softokn-debuginfo-3.16.2.3-1.el7_0.i686.rpm nss-softokn-debuginfo-3.16.2.3-1.el7_0.x86_64.rpm nss-softokn-devel-3.16.2.3-1.el7_0.i686.rpm nss-softokn-devel-3.16.2.3-1.el7_0.x86_64.rpm nss-softokn-freebl-devel-3.16.2.3-1.el7_0.i686.rpm nss-softokn-freebl-devel-3.16.2.3-1.el7_0.x86_64.rpm nss-util-debuginfo-3.16.2.3-1.el7_0.i686.rpm nss-util-debuginfo-3.16.2.3-1.el7_0.x86_64.rpm nss-util-devel-3.16.2.3-1.el7_0.i686.rpm nss-util-devel-3.16.2.3-1.el7_0.x86_64.rpm Red Hat Enterprise Linux Server (v.7): Source: nss-3.16.2.3-2.el7_0.src.rpm nss-softokn-3.16.2.3-1.el7_0.src.rpm nss-util-3.16.2.3-1.el7_0.src.rpm ppc64: nss-3.16.2.3-2.el7_0.ppc.rpm nss-3.16.2.3-2.el7_0.ppc64.rpm nss-debuginfo-3.16.2.3-2.el7_0.ppc.rpm nss-debuginfo-3.16.2.3-2.el7_0.ppc64.rpm nss-devel-3.16.2.3-2.el7_0.ppc.rpm nss-devel-3.16.2.3-2.el7_0.ppc64.rpm nss-softokn-3.16.2.3-1.el7_0.ppc.rpm nss-softokn-3.16.2.3-1.el7_0.ppc64.rpm nss-softokn-debuginfo-3.16.2.3-1.el7_0.ppc.rpm nss-softokn-debuginfo-3.16.2.3-1.el7_0.ppc64.rpm nss-softokn-devel-3.16.2.3-1.el7_0.ppc.rpm nss-softokn-devel-3.16.2.3-1.el7_0.ppc64.rpm nss-softokn-freebl-3.16.2.3-1.el7_0.ppc.rpm nss-softokn-freebl-3.16.2.3-1.el7_0.ppc64.rpm nss-softokn-freebl-devel-3.16.2.3-1.el7_0.ppc.rpm nss-softokn-freebl-devel-3.16.2.3-1.el7_0.ppc64.rpm nss-sysinit-3.16.2.3-2.el7_0.ppc64.rpm nss-tools-3.16.2.3-2.el7_0.ppc64.rpm nss-util-3.16.2.3-1.el7_0.ppc.rpm nss-util-3.16.2.3-1.el7_0.ppc64.rpm nss-util-debuginfo-3.16.2.3-1.el7_0.ppc.rpm nss-util-debuginfo-3.16.2.3-1.el7_0.ppc64.rpm nss-util-devel-3.16.2.3-1.el7_0.ppc.rpm nss-util-devel-3.16.2.3-1.el7_0.ppc64.rpm s390x: nss-3.16.2.3-2.el7_0.s390.rpm nss-3.16.2.3-2.el7_0.s390x.rpm nss-debuginfo-3.16.2.3-2.el7_0.s390.rpm nss-debuginfo-3.16.2.3-2.el7_0.s390x.rpm nss-devel-3.16.2.3-2.el7_0.s390.rpm nss-devel-3.16.2.3-2.el7_0.s390x.rpm nss-softokn-3.16.2.3-1.el7_0.s390.rpm nss-softokn-3.16.2.3-1.el7_0.s390x.rpm nss-softokn-debuginfo-3.16.2.3-1.el7_0.s390.rpm nss-softokn-debuginfo-3.16.2.3-1.el7_0.s390x.rpm nss-softokn-devel-3.16.2.3-1.el7_0.s390.rpm nss-softokn-devel-3.16.2.3-1.el7_0.s390x.rpm nss-softokn-freebl-3.16.2.3-1.el7_0.s390.rpm nss-softokn-freebl-3.16.2.3-1.el7_0.s390x.rpm nss-softokn-freebl-devel-3.16.2.3-1.el7_0.s390.rpm nss-softokn-freebl-devel-3.16.2.3-1.el7_0.s390x.rpm nss-sysinit-3.16.2.3-2.el7_0.s390x.rpm nss-tools-3.16.2.3-2.el7_0.s390x.rpm nss-util-3.16.2.3-1.el7_0.s390.rpm nss-util-3.16.2.3-1.el7_0.s390x.rpm nss-util-debuginfo-3.16.2.3-1.el7_0.s390.rpm nss-util-debuginfo-3.16.2.3-1.el7_0.s390x.rpm nss-util-devel-3.16.2.3-1.el7_0.s390.rpm nss-util-devel-3.16.2.3-1.el7_0.s390x.rpm x86_64: nss-3.16.2.3-2.el7_0.i686.rpm nss-3.16.2.3-2.el7_0.x86_64.rpm nss-debuginfo-3.16.2.3-2.el7_0.i686.rpm nss-debuginfo-3.16.2.3-2.el7_0.x86_64.rpm nss-devel-3.16.2.3-2.el7_0.i686.rpm nss-devel-3.16.2.3-2.el7_0.x86_64.rpm nss-softokn-3.16.2.3-1.el7_0.i686.rpm nss-softokn-3.16.2.3-1.el7_0.x86_64.rpm nss-softokn-debuginfo-3.16.2.3-1.el7_0.i686.rpm nss-softokn-debuginfo-3.16.2.3-1.el7_0.x86_64.rpm nss-softokn-devel-3.16.2.3-1.el7_0.i686.rpm nss-softokn-devel-3.16.2.3-1.el7_0.x86_64.rpm nss-softokn-freebl-3.16.2.3-1.el7_0.i686.rpm nss-softokn-freebl-3.16.2.3-1.el7_0.x86_64.rpm nss-softokn-freebl-devel-3.16.2.3-1.el7_0.i686.rpm nss-softokn-freebl-devel-3.16.2.3-1.el7_0.x86_64.rpm nss-sysinit-3.16.2.3-2.el7_0.x86_64.rpm nss-tools-3.16.2.3-2.el7_0.x86_64.rpm nss-util-3.16.2.3-1.el7_0.i686.rpm nss-util-3.16.2.3-1.el7_0.x86_64.rpm nss-util-debuginfo-3.16.2.3-1.el7_0.i686.rpm nss-util-debuginfo-3.16.2.3-1.el7_0.x86_64.rpm nss-util-devel-3.16.2.3-1.el7_0.i686.rpm nss-util-devel-3.16.2.3-1.el7_0.x86_64.rpm Red Hat Enterprise Linux Server Optional (v. 7): ppc64: nss-debuginfo-3.16.2.3-2.el7_0.ppc.rpm nss-debuginfo-3.16.2.3-2.el7_0.ppc64.rpm nss-pkcs11-devel-3.16.2.3-2.el7_0.ppc.rpm nss-pkcs11-devel-3.16.2.3-2.el7_0.ppc64.rpm s390x: nss-debuginfo-3.16.2.3-2.el7_0.s390.rpm nss-debuginfo-3.16.2.3-2.el7_0.s390x.rpm nss-pkcs11-devel-3.16.2.3-2.el7_0.s390.rpm nss-pkcs11-devel-3.16.2.3-2.el7_0.s390x.rpm x86_64: nss-debuginfo-3.16.2.3-2.el7_0.i686.rpm nss-debuginfo-3.16.2.3-2.el7_0.x86_64.rpm nss-pkcs11-devel-3.16.2.3-2.el7_0.i686.rpm nss-pkcs11-devel-3.16.2.3-2.el7_0.x86_64.rpm Red Hat Enterprise Linux Workstation (v.7): Source: nss-3.16.2.3-2.el7_0.src.rpm nss-softokn-3.16.2.3-1.el7_0.src.rpm nss-util-3.16.2.3-1.el7_0.src.rpm x86_64: nss-3.16.2.3-2.el7_0.i686.rpm nss-3.16.2.3-2.el7_0.x86_64.rpm nss-debuginfo-3.16.2.3-2.el7_0.i686.rpm nss-debuginfo-3.16.2.3-2.el7_0.x86_64.rpm nss-devel-3.16.2.3-2.el7_0.i686.rpm nss-devel-3.16.2.3-2.el7_0.x86_64.rpm nss-softokn-3.16.2.3-1.el7_0.i686.rpm nss-softokn-3.16.2.3-1.el7_0.x86_64.rpm nss-softokn-debuginfo-3.16.2.3-1.el7_0.i686.rpm nss-softokn-debuginfo-3.16.2.3-1.el7_0.x86_64.rpm nss-softokn-devel-3.16.2.3-1.el7_0.i686.rpm nss-softokn-devel-3.16.2.3-1.el7_0.x86_64.rpm nss-softokn-freebl-3.16.2.3-1.el7_0.i686.rpm nss-softokn-freebl-3.16.2.3-1.el7_0.x86_64.rpm nss-softokn-freebl-devel-3.16.2.3-1.el7_0.i686.rpm nss-softokn-freebl-devel-3.16.2.3-1.el7_0.x86_64.rpm nss-sysinit-3.16.2.3-2.el7_0.x86_64.rpm nss-tools-3.16.2.3-2.el7_0.x86_64.rpm nss-util-3.16.2.3-1.el7_0.i686.rpm nss-util-3.16.2.3-1.el7_0.x86_64.rpm nss-util-debuginfo-3.16.2.3-1.el7_0.i686.rpm nss-util-debuginfo-3.16.2.3-1.el7_0.x86_64.rpm nss-util-devel-3.16.2.3-1.el7_0.i686.rpm nss-util-devel-3.16.2.3-1.el7_0.x86_64.rpm Red Hat Enterprise Linux Workstation Optional (v. 7): x86_64: nss-debuginfo-3.16.2.3-2.el7_0.i686.rpm nss-debuginfo-3.16.2.3-2.el7_0.x86_64.rpm nss-pkcs11-devel-3.16.2.3-2.el7_0.i686.rpm nss-pkcs11-devel-3.16.2.3-2.el7_0.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/updates/classification#important https://access.redhat.com/articles/1232123 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2014 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iD8DBQFUflBbXlSAg2UNWIIRAu4/AJ48DOLhhJCOz7bEfb2hnrhxuwF/0ACgnlfi jJ4py+iKMGp8SjSnWwB0rUM=WVGF -----END PGP SIGNATURE----- -- Enterprise-watch-list mailinglist This email address is being protected from spambots. You need JavaScript enabled to view it. . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ======================================================. updated, nss-util, nss-softokn, packages, contain, patch, mitigate, cve-2014-3566. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Dec 02, 2014 Important Red Hat
Banner 2 1028x280 1708121730 1 1771599631
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorybuffer overflowcritical

Debian: DSA-1874-1 Critical: NSS Package Multiple Threats

Several vulnerabilities have been discovered in the Network Security Service libraries. The Common Vulnerabilities and Exposures project identifies the following problems: . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1874-1 This email address is being protected from spambots. You need JavaScript enabled to view it. http://www.debian.org/security/ Moritz Muehlenhoff August 26, 2009 http://www.debian.org/security/faq - ------------------------------------------------------------------------ Package : nss Vulnerability : several Problem type : local(remote) Debian-specific: no CVE Id(s) : CVE-2009-2404 CVE-2009-2408 CVE-2009-2409 Several vulnerabilities have been discovered in the Network Security Service libraries. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2009-2404 Moxie Marlinspike discovered that a buffer overflow in the regular expression parser could lead to the execution of arbitrary code. CVE-2009-2408 Dan Kaminsky discovered that NULL characters in certificate names could lead to man-in-the-middle attacks by tricking the user into accepting a rogue certificate. CVE-2009-2409 Certificates with MD2 hash signatures are no longer accepted since they're no longer considered cryptograhically secure. The old stable distribution (etch) doesn't contain nss. For the stable distribution (lenny), these problems have been fixed in version 3.12.3.1-0lenny1. For the unstable distribution (sid), these problems have been fixed in version 3.12.3.1-1. We recommend that you upgrade your nss packages. Upgrade instructions - -------------------- wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will installcorrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 5.0 alias lenny - -------------------------------- Stable updates are available for alpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc. Source archives: Size/MD5 checksum: 1401 1dbc1107598064214fa689733495c56c Size/MD5 checksum: 5320607 750839c9c018a0984fd94f7a9cc3dd7f Size/MD5 checksum: 52489 96f62370296f7d18a9748429ac99525f alpha architecture (DEC Alpha) Size/MD5 checksum: 3048842 6b764e28ae56542572a4275e50c4d303 Size/MD5 checksum: 267250 b00f4c63a8d27a54fb562029411daf0e Size/MD5 checksum: 1204106 c8ba098d6cc0af39ab93cd728ca7bb19 Size/MD5 checksum: 342544 2191bbcd5708f719392c8489bde7a0c6 amd64 architecture (AMD x86_64 (AMD64)) Size/MD5 checksum: 256944 7a31770b748ff56ba45ac55044960b6d Size/MD5 checksum: 1069628 eea22c2ccef5375689fe581de8152a61 Size/MD5 checksum: 321374 1b86ac1f27fee3287f1418973595a4e9 Size/MD5 checksum: 3099080 f4112f9f06d87e6139097a27e1419664 arm architecture (ARM) Size/MD5 checksum: 2900162 21604ffa61b7f5049f0f919030fec0f0 Size/MD5 checksum: 1011344 78bc0d853274ca2fc9f36752ed9f9c51 Size/MD5 checksum: 308766 e7547e80f6726b91611f9b92d83aa6b3 Size/MD5 checksum: 254374 ead00e7f25c47cc4b8b1ed99801c4ab9 armel architecture (ARM EABI) Size/MD5 checksum: 257820 a17086cca6fdaf26e5a6b3fb84ae476d Size/MD5 checksum: 308198 f24e01f4b2396193a314a965555374e8 Size/MD5 checksum: 1017054 d1086599e6a1904548804d538f90c810 Size/MD5 checksum: 2923084 b5e1d56b749941124c8b91f063d44c19 hppa architecture (HP PA RISC) Size/MD5 checksum: 263122 b611c51dae677b42befac5f2e638d941 Size/MD5 checksum: 347148 c725c156c6cd17d09421e066548c673d Size/MD5 checksum: 1169014 d5858e4c11ca0b88f59c24af1a251eea Size/MD5 checksum: 2948790 92a46a3cd9b2db3c7f0d07d817a03ba4 i386architecture (Intel ia32) Size/MD5 checksum: 957706 21a666157a0a208d8405df062b3276d2 Size/MD5 checksum: 304016 9771905fcb4acd6855158c8645722762 Size/MD5 checksum: 2913468 89b7116120a075a7795615d062bd7450 Size/MD5 checksum: 254478 7747ea82c2d9e93c6a610d60094fb316 ia64 architecture (Intel ia64) Size/MD5 checksum: 267008 94a0fe98c183a728df7e64826f8b2c46 Size/MD5 checksum: 410780 a834a4f57ddc003570c6eaaafbc87032 Size/MD5 checksum: 2797788 1a1f375f7713f69acdf01e77f779b28b Size/MD5 checksum: 1489492 a468da7ac4219e564793d06978a6be07 mips architecture (MIPS (Big Endian)) Size/MD5 checksum: 257808 fc1a4db95e71876cf0ffbe0b49327148 Size/MD5 checksum: 3049346 fc35475e7157e1859c154556ecb648b3 Size/MD5 checksum: 318740 fbafbce5a6d9498d8cd1fe1d8f1eaebc Size/MD5 checksum: 1038702 0723e7d8621b7d65517cc3945a9790be mipsel architecture (MIPS (Little Endian)) Size/MD5 checksum: 1028286 81e4bcd025b2ee3996de08b9fdb0b23a Size/MD5 checksum: 317082 8b16e198a97ffb60df698767fef8cc35 Size/MD5 checksum: 2999704 d1f9bf1211ec7aa9458dcdd673a4a709 Size/MD5 checksum: 257740 82ed6773d6e942a70f1274e4a241bdd9 powerpc architecture (PowerPC) Size/MD5 checksum: 255174 6abcf8f6d427c29f704ca156dc201113 Size/MD5 checksum: 1029684 997fec6bb01c10e9e3c6aa15f0f78386 Size/MD5 checksum: 334590 1c8056037d5bccdad7977b49d3910065 Size/MD5 checksum: 2946754 1739d7e55a79d8e85dc5e668180846ae s390 architecture (IBM S/390) Size/MD5 checksum: 1178522 0e72b044e78bca218a8d55c20c16e8d5 Size/MD5 checksum: 3020690 7115f25dbf7c31c55e768d48a29c8b46 Size/MD5 checksum: 258572 f8bf00777c295c76b0071a1354b011fa Size/MD5 checksum: 346234 accf6855c0b8ea6d087bf062b2ac1d7b sparc architecture (Sun SPARC/UltraSPARC) Size/MD5 checksum: 317482 f2f321d58890c1edb386ebc224ac052e Size/MD5 checksum: 996192 cf17776aa8674a8c7e71527b6534b0e2 Size/MD5 checksum: 2574642452b9eef9a3c0b786d4dc4afc2d16ae Size/MD5 checksum: 2712012 910e98017dabb5adcc109f05f94b1a56 These files will probably be moved into the stable distribution on its next update. - --------------------------------------------------------------------------------- For apt-get: deb https://www.debian.org/security/ stable/updates main For dpkg-ftp: dists/stable/updates/main Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. Package info: `apt-cache show ' and https://www.debian.org/distrib/packages . Explore Debian's DSA-1874-1 advisory on critical NSS issues and essential updates to mitigate risks.. Debian Security,Dsa 1874-1,Nss Packages,Security Update,Buffer Overflow. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Aug 26, 2009 Critical Debian
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here