nss 2:3.49.1-1ubuntu1.5 source package in Ubuntu
Changelog
nss (2:3.49.1-1ubuntu1.5) focal-security; urgency=medium
* SECURITY UPDATE: Out-of-bounds read
- debian/patches/CVE-2020-12403-*.patch: disable PKCS11 incremental
mode for ChaCha20 and fix incorrect call to ChaChaPoly1305 by PKCS11
in nss/gtests/pk11_gtest/pk11_cipherop_unittest.cc,
nss/gtests/pk11_gtest/pk11_chacha20poly1305_unittest.cc,
nss/lib/softoken/pkcs11c.c, nss/lib/freebl/chacha20poly1305.c.
- CVE-2020-12403
-- <email address hidden> (Leonidas S. Barbosa) Thu, 20 Aug 2020 12:02:04 -0300
Upload details
- Uploaded by:
- Leonidas S. Barbosa
- Uploaded to:
- Focal
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any
- Section:
- libs
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| nss_3.49.1.orig.tar.gz | 72.9 MiB | d9aa42e49e02bb0dc0a2f164604cfc718e11a2a06ddb266cd676376ac21b026e |
| nss_3.49.1-1ubuntu1.5.debian.tar.xz | 194.2 KiB | 4344256da05518a56064722d1b66b2c4a0b537bf27d02cf34ce54f02b64fff3e |
| nss_3.49.1-1ubuntu1.5.dsc | 2.2 KiB | da7ce9b95511085e1995c3a88f9c13cd608ed3287132975aa946acea2c7e090f |
Available diffs
Binary packages built by this source
- libnss3: Network Security Service libraries
This is a set of libraries designed to support cross-platform development
of security-enabled client and server applications. It can support SSLv2
and v4, TLS, PKCS #5, #7, #11, #12, S/MIME, X.509 v3 certificates and
other security standards.
- libnss3-dbgsym: debug symbols for libnss3
- libnss3-dev: Development files for the Network Security Service libraries
This is a set of libraries designed to support cross-platform development
of security-enabled client and server applications. It can support SSLv2
and v4, TLS, PKCS #5, #7, #11, #12, S/MIME, X.509 v3 certificates and
other security standards.
.
Install this package if you wish to develop your own programs using the
Network Security Service Libraries.
- libnss3-tools: Network Security Service tools
This is a set of tools on top of the Network Security Service libraries.
This package includes:
* certutil: manages certificate and key databases (cert7.db and key3.db)
* modutil: manages the database of PKCS11 modules (secmod.db)
* pk12util: imports/exports keys and certificates between the cert/key
databases and files in PKCS12 format.
* shlibsign: creates .chk files for use in FIPS mode.
* signtool: creates digitally-signed jar archives containing files and/or
code.
* ssltap: proxy requests for an SSL server and display the contents of
the messages exchanged between the client and server.
- libnss3-tools-dbgsym: debug symbols for libnss3-tools
