[El-errata] ELBA-2015-1533 Oracle Linux 7 nss-util, nss-softokn, and nss bug fix and enhancement update

Errata Announcements for Oracle Linux el-errata at oss.oracle.com
Wed Aug 5 21:25:50 PDT 2015 

Oracle Linux Bug Fix Advisory ELBA-2015-1533

http://linux.oracle.com/errata/ELBA-2015-1533.html

The following updated rpms for Oracle Linux 7 have been uploaded to the 
Unbreakable Linux Network:

x86_64:
nss-3.19.1-5.0.1.el7_1.i686.rpm
nss-3.19.1-5.0.1.el7_1.x86_64.rpm
nss-devel-3.19.1-5.0.1.el7_1.i686.rpm
nss-devel-3.19.1-5.0.1.el7_1.x86_64.rpm
nss-pkcs11-devel-3.19.1-5.0.1.el7_1.i686.rpm
nss-pkcs11-devel-3.19.1-5.0.1.el7_1.x86_64.rpm
nss-softokn-3.16.2.3-12.el7_1.i686.rpm
nss-softokn-3.16.2.3-12.el7_1.x86_64.rpm
nss-softokn-devel-3.16.2.3-12.el7_1.i686.rpm
nss-softokn-devel-3.16.2.3-12.el7_1.x86_64.rpm
nss-softokn-freebl-3.16.2.3-12.el7_1.i686.rpm
nss-softokn-freebl-3.16.2.3-12.el7_1.x86_64.rpm
nss-softokn-freebl-devel-3.16.2.3-12.el7_1.i686.rpm
nss-softokn-freebl-devel-3.16.2.3-12.el7_1.x86_64.rpm
nss-sysinit-3.19.1-5.0.1.el7_1.x86_64.rpm
nss-tools-3.19.1-5.0.1.el7_1.x86_64.rpm
nss-util-3.19.1-3.el7_1.i686.rpm
nss-util-3.19.1-3.el7_1.x86_64.rpm
nss-util-devel-3.19.1-3.el7_1.i686.rpm
nss-util-devel-3.19.1-3.el7_1.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/nss-3.19.1-5.0.1.el7_1.src.rpm
http://oss.oracle.com/ol7/SRPMS-updates/nss-softokn-3.16.2.3-12.el7_1.src.rpm
http://oss.oracle.com/ol7/SRPMS-updates/nss-util-3.19.1-3.el7_1.src.rpm

Description of changes:

nss
[3.19.1-5.0.1]
- Added nss-vendor.patch to change vendor

[3.19.1-5]
- Incremental patches to fix SSL/TLS test suite execution,
   fix the earlier SHA384 patch, and inform clients to use SHA384 with
   certificate_verify if required by NSS.

[3.19.1-4]
- Add support for sha384 tls cipher suites
- Add support for server-side hde key exchange
- Add support for DSS+SHA256 ciphersuites

nss-softokn
[3.16.2.3-12]
- Bump nss_util_version to 3.19.1

[3.16.2.3-11]
- Make sure we have enough space for generating keyblocks for ciphers 
with HMAC_SHA384 (TLS).
- Resolves: Bug 1216909 - Need to support SHA384 TLS cipher suites

[3.16.2.3-10]
- Use the TLS 1.2 mechanisms for PKCS #11 added for V2.40
- Resolves: Bug 1216909 - Need to support SHA384 TLS cipher suites

nss-util
[3.19.1-3]
- Remove unused patch

[3.19.1-2]
- Add support for TLS 1.2 SHA384 per PKCS #11 v2.40

More information about the El-errata mailing list