[El-errata] ELSA-2013-1791 Important: Oracle Linux 5 nss and nspr security, bug fix, and enhancement update
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Thu Dec 5 18:27:33 PST 2013
Oracle Linux Security Advisory ELSA-2013-1791
https://rhn.redhat.com/errata/RHSA-2013-1791.html
The following updated rpms for Oracle Linux 5 have been uploaded to the
Unbreakable Linux Network:
i386:
nspr-4.10.2-2.el5_10.i386.rpm
nspr-devel-4.10.2-2.el5_10.i386.rpm
nss-3.15.3-3.el5_10.i386.rpm
nss-devel-3.15.3-3.el5_10.i386.rpm
nss-pkcs11-devel-3.15.3-3.el5_10.i386.rpm
nss-tools-3.15.3-3.el5_10.i386.rpm
x86_64:
nspr-4.10.2-2.el5_10.i386.rpm
nspr-4.10.2-2.el5_10.x86_64.rpm
nspr-devel-4.10.2-2.el5_10.i386.rpm
nspr-devel-4.10.2-2.el5_10.x86_64.rpm
nss-3.15.3-3.el5_10.i386.rpm
nss-3.15.3-3.el5_10.x86_64.rpm
nss-devel-3.15.3-3.el5_10.i386.rpm
nss-devel-3.15.3-3.el5_10.x86_64.rpm
nss-pkcs11-devel-3.15.3-3.el5_10.i386.rpm
nss-pkcs11-devel-3.15.3-3.el5_10.x86_64.rpm
nss-tools-3.15.3-3.el5_10.x86_64.rpm
ia64:
nspr-4.10.2-2.el5_10.i386.rpm
nspr-4.10.2-2.el5_10.ia64.rpm
nspr-devel-4.10.2-2.el5_10.ia64.rpm
nss-3.15.3-3.el5_10.i386.rpm
nss-3.15.3-3.el5_10.ia64.rpm
nss-devel-3.15.3-3.el5_10.ia64.rpm
nss-pkcs11-devel-3.15.3-3.el5_10.ia64.rpm
nss-tools-3.15.3-3.el5_10.ia64.rpm
SRPMS:
http://oss.oracle.com/ol5/SRPMS-updates/nspr-4.10.2-2.el5_10.src.rpm
http://oss.oracle.com/ol5/SRPMS-updates/nss-3.15.3-3.el5_10.src.rpm
Description of changes:
nspr
[4.10.2-2]
- Fix changelog comments
- Resolves: rhbz#1032466 - CVE-2013-5605 CVE-2013-5606 CVE-2013-1741
nss: various flaws [rhel-5.10]
[4.10.2-1]
- Update to nspr-4.10.2
- Remove an unused patch
- Resolves: rhbz#1032466 - CVE-2013-5605 CVE-2013-5606 CVE-2013-1741
nss: various flaws [rhel-5.10]
[4.10.0-2]
- Retagging to fix an inconsitency in the release tags
- Resolves: rhbz#1002641 - Rebase RHEL 5 to NSPR 4.10 (for FF 24.x)
[4.9.5-1]
- Rebase to nspr-4.10.0
- Resolves: rhbz#1002641 - Rebase RHEL 5 to NSPR 4.10 (for FF 24.x)
nss
[3.15.3-3]
- remove unnecessary and problematic template-removal patch
which was added as part of the 3.15.1 rebase
- bump release number
[3.15.3-1]
- Update to nss-3.15.3
- Remove unused patch
- Resolves: rhbz#1032466 - CVE-2013-5605 CVE-2013-5606 CVE-2013-1741
nss: various flaws [rhel-5.10]
[3.15.1-2]
- Remove unused patches
- Resolves: rhbz#1033478 - Rebase RHEL 5 to NSS 3.15.1 (for FF 24.x)
[3.15.1-1]
- Rebase to nss-3.15.1
- Resolves: rhbz#1033478 - Rebase RHEL 5 to NSS 3.15.1 (for FF 24.x)
- Resolves: rhbz#1033499 - [Regression] NSS no longer trusts MD5
certificates
- Split %check section tests in two: freebl/softoken and rest of nss tests
- Adjust various patches and spec file steps on account of the rebase
- Add various patches and remove obsoleted ones on account of the rebase
- Renumber patches so freeb/softoken ones match the corresponding ones
in rhel-6 nss-softokn
More information about the El-errata
mailing list