Moderate: nss and nspr security, bug fix, and enhancement update
| Advisory: | RHSA-2012:1090-1 |
|---|---|
| Type: | Security Advisory |
| Severity: | Moderate |
| Issued on: | 2012-07-17 |
| Last updated on: | 2012-07-17 |
| Affected Products: | RHEL Desktop Workstation (v. 5 client) Red Hat Enterprise Linux (v. 5 server) Red Hat Enterprise Linux Desktop (v. 5 client) |
| CVEs (cve.mitre.org): |
CVE-2012-0441 |
Details
Updated nss and nspr packages that fix two security issues, several bugs,
and add various enhancements are now available for Red Hat
Enterprise Linux 5.
The Red Hat Security Response Team has rated this update as having moderate
security impact. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available from the CVE link in
the References section.
Network Security Services (NSS) is a set of libraries designed to support
the cross-platform development of security-enabled client and server
applications. Netscape Portable Runtime (NSPR) provides platform
independence for non-GUI operating system facilities.
A flaw was found in the way the ASN.1 (Abstract Syntax Notation One)
decoder in NSS handled zero length items. This flaw could cause the decoder
to incorrectly skip or replace certain items with a default value, or could
cause an application to crash if, for example, it received a
specially-crafted OCSP (Online Certificate Status Protocol) response.
(CVE-2012-0441)
It was found that a Certificate Authority (CA) issued a subordinate CA
certificate to its customer, that could be used to issue certificates for
any name. This update renders the subordinate CA certificate as untrusted.
(BZ#798533)
Note: The BZ#798533 fix only applies to applications using the NSS Builtin
Object Token. It does not render the certificates untrusted for
applications that use the NSS library, but do not use the NSS Builtin
Object Token.
In addition, the nspr package has been upgraded to upstream version 4.9.1,
and the nss package has been upgraded to upstream version 3.13.5. These
updates provide a number of bug fixes and enhancements over the previous
versions. (BZ#834220, BZ#834219)
All NSS and NSPR users should upgrade to these updated packages, which
correct these issues and add these enhancements. After installing the
update, applications using NSS and NSPR must be restarted for the changes
to take effect.
Solution
Before applying this update, make sure all previously-released errata
relevant to your system have been applied.
This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/knowledge/articles/11258
relevant to your system have been applied.
This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/knowledge/articles/11258
Updated packages
| RHEL Desktop Workstation (v. 5 client) | |
| SRPMS: | |
| nspr-4.9.1-4.el5_8.src.rpm File outdated by: RHSA-2013:0214 |
MD5: cdff12878816bfeb0ed75c75c75713fb SHA-256: 31972c1de3d5992813a5617cb5ff0109566d6ef2e5dc3facd0c56436fed02f57 |
| nss-3.13.5-4.el5_8.src.rpm File outdated by: RHSA-2013:0214 |
MD5: 91962375bac18d8b3227d9f64ca420c0 SHA-256: 0c2aa3633dccef5cb1dadd0628d203480dee75e676e3b5e4e7e66cc1609bee48 |
| IA-32: | |
| nspr-debuginfo-4.9.1-4.el5_8.i386.rpm File outdated by: RHSA-2013:0214 |
MD5: ad78ebe1e733a7fbbefc297794335437 SHA-256: abf96ff8dcc26e31dfe63db04fabfcb788663cf660fd47855ec0c384299aa836 |
| nspr-devel-4.9.1-4.el5_8.i386.rpm File outdated by: RHSA-2013:0214 |
MD5: 0141c48cee48aed823814cc3bb7d1877 SHA-256: ab638a8eb391f3dda52091d84aea6efdf4e4298a39b35df51138a76fed8093a8 |
| nss-debuginfo-3.13.5-4.el5_8.i386.rpm File outdated by: RHSA-2013:0214 |
MD5: 026c5bce832f41588ced78d179f80077 SHA-256: 092c0d2cdc62376175fc70385dd4a399d481a1afe163506fcb7d4dc055cd7253 |
| nss-devel-3.13.5-4.el5_8.i386.rpm File outdated by: RHSA-2013:0214 |
MD5: c8f1ce7972505f00b1cb32eab9adaf49 SHA-256: fd2d64cf4f5be5e2aed41d985f95bf8952469ccff62d1b5582a37d6d4a643c6c |
| nss-pkcs11-devel-3.13.5-4.el5_8.i386.rpm File outdated by: RHSA-2013:0214 |
MD5: 3cda6a79a81cc1c20a8b9c863930b5d7 SHA-256: 212c9a17e6621fe19d0c446b6688b005049bd220d52e2e8f64e8967b50e2f1c5 |
| x86_64: | |
| nspr-debuginfo-4.9.1-4.el5_8.i386.rpm File outdated by: RHSA-2013:0214 |
MD5: ad78ebe1e733a7fbbefc297794335437 SHA-256: abf96ff8dcc26e31dfe63db04fabfcb788663cf660fd47855ec0c384299aa836 |
| nspr-debuginfo-4.9.1-4.el5_8.x86_64.rpm File outdated by: RHSA-2013:0214 |
MD5: db03f74b7004a6a7faabfd7a6a7cbd4d SHA-256: 2e195ea84b7f157e08a2c771f9ec2be9d7d83c488556d1f511f173983f5b38bd |
| nspr-devel-4.9.1-4.el5_8.i386.rpm File outdated by: RHSA-2013:0214 |
MD5: 0141c48cee48aed823814cc3bb7d1877 SHA-256: ab638a8eb391f3dda52091d84aea6efdf4e4298a39b35df51138a76fed8093a8 |
| nspr-devel-4.9.1-4.el5_8.x86_64.rpm File outdated by: RHSA-2013:0214 |
MD5: 34f6918eeb7c1c98ca1b2e3fc0b4dabb SHA-256: 8a4c3540fcf1a68d529d9297c1cdda5d06400e73da3571051834480b771fd069 |
| nss-debuginfo-3.13.5-4.el5_8.i386.rpm File outdated by: RHSA-2013:0214 |
MD5: 026c5bce832f41588ced78d179f80077 SHA-256: 092c0d2cdc62376175fc70385dd4a399d481a1afe163506fcb7d4dc055cd7253 |
| nss-debuginfo-3.13.5-4.el5_8.x86_64.rpm File outdated by: RHSA-2013:0214 |
MD5: ea1ca2fb2a9fede172e06ab7086374bf SHA-256: b8eefb472c8cdb0325ea58a81df7b9df0e99a81110e929ff9eae30f4534a1914 |
| nss-devel-3.13.5-4.el5_8.i386.rpm File outdated by: RHSA-2013:0214 |
MD5: c8f1ce7972505f00b1cb32eab9adaf49 SHA-256: fd2d64cf4f5be5e2aed41d985f95bf8952469ccff62d1b5582a37d6d4a643c6c |
| nss-devel-3.13.5-4.el5_8.x86_64.rpm File outdated by: RHSA-2013:0214 |
MD5: d4c9cc35e646a782d73c625b741af78e SHA-256: 9aaf9bf33943f209703d2c413c120714b889c935ee7f4e3772615ece570e7c12 |
| nss-pkcs11-devel-3.13.5-4.el5_8.i386.rpm File outdated by: RHSA-2013:0214 |
MD5: 3cda6a79a81cc1c20a8b9c863930b5d7 SHA-256: 212c9a17e6621fe19d0c446b6688b005049bd220d52e2e8f64e8967b50e2f1c5 |
| nss-pkcs11-devel-3.13.5-4.el5_8.x86_64.rpm File outdated by: RHSA-2013:0214 |
MD5: 0251563dde00bfcdd594de39d19c2353 SHA-256: bb8f6fb3a3cdd080c06459fc16c47804a1df1b0f0b633f0773b58c207e54c90c |
| Red Hat Enterprise Linux (v. 5 server) | |
| SRPMS: | |
| nspr-4.9.1-4.el5_8.src.rpm File outdated by: RHSA-2013:0214 |
MD5: cdff12878816bfeb0ed75c75c75713fb SHA-256: 31972c1de3d5992813a5617cb5ff0109566d6ef2e5dc3facd0c56436fed02f57 |
| nss-3.13.5-4.el5_8.src.rpm File outdated by: RHSA-2013:0214 |
MD5: 91962375bac18d8b3227d9f64ca420c0 SHA-256: 0c2aa3633dccef5cb1dadd0628d203480dee75e676e3b5e4e7e66cc1609bee48 |
| IA-32: | |
| nspr-4.9.1-4.el5_8.i386.rpm File outdated by: RHSA-2013:0214 |
MD5: a532d3fd394d8ba32978db4507fc40fe SHA-256: 5099ba272f7ecf3467ba7cbfe2b2264f5df60ec8780a0075177aef903d2163aa |
| nspr-debuginfo-4.9.1-4.el5_8.i386.rpm File outdated by: RHSA-2013:0214 |
MD5: ad78ebe1e733a7fbbefc297794335437 SHA-256: abf96ff8dcc26e31dfe63db04fabfcb788663cf660fd47855ec0c384299aa836 |
| nspr-devel-4.9.1-4.el5_8.i386.rpm File outdated by: RHSA-2013:0214 |
MD5: 0141c48cee48aed823814cc3bb7d1877 SHA-256: ab638a8eb391f3dda52091d84aea6efdf4e4298a39b35df51138a76fed8093a8 |
| nss-3.13.5-4.el5_8.i386.rpm File outdated by: RHSA-2013:0214 |
MD5: 389ec3611e53cf8f4126c0ab2198ef8d SHA-256: 2978043e421e9c28e3f11d42fb3d09b275984f213bdfe2660b696e73f3cb1c96 |
| nss-debuginfo-3.13.5-4.el5_8.i386.rpm File outdated by: RHSA-2013:0214 |
MD5: 026c5bce832f41588ced78d179f80077 SHA-256: 092c0d2cdc62376175fc70385dd4a399d481a1afe163506fcb7d4dc055cd7253 |
| nss-devel-3.13.5-4.el5_8.i386.rpm File outdated by: RHSA-2013:0214 |
MD5: c8f1ce7972505f00b1cb32eab9adaf49 SHA-256: fd2d64cf4f5be5e2aed41d985f95bf8952469ccff62d1b5582a37d6d4a643c6c |
| nss-pkcs11-devel-3.13.5-4.el5_8.i386.rpm File outdated by: RHSA-2013:0214 |
MD5: 3cda6a79a81cc1c20a8b9c863930b5d7 SHA-256: 212c9a17e6621fe19d0c446b6688b005049bd220d52e2e8f64e8967b50e2f1c5 |
| nss-tools-3.13.5-4.el5_8.i386.rpm File outdated by: RHSA-2013:0214 |
MD5: 36b1b484f73a3d2e614abab1b24d1a0b SHA-256: 2d3039067a49279bf9b879356c98c66f42e4d1a0dfa2faba129c0b3567ceb1d9 |
| IA-64: | |
| nspr-4.9.1-4.el5_8.i386.rpm File outdated by: RHSA-2013:0214 |
MD5: a532d3fd394d8ba32978db4507fc40fe SHA-256: 5099ba272f7ecf3467ba7cbfe2b2264f5df60ec8780a0075177aef903d2163aa |
| nspr-4.9.1-4.el5_8.ia64.rpm File outdated by: RHSA-2013:0214 |
MD5: ed78c0594282b282d0d49b8f3842edda SHA-256: fffda9b1a9fd5c226818d76050fa09e1c5996dc2ef3c599a900c48d21cc7924f |
| nspr-debuginfo-4.9.1-4.el5_8.i386.rpm File outdated by: RHSA-2013:0214 |
MD5: ad78ebe1e733a7fbbefc297794335437 SHA-256: abf96ff8dcc26e31dfe63db04fabfcb788663cf660fd47855ec0c384299aa836 |
| nspr-debuginfo-4.9.1-4.el5_8.ia64.rpm File outdated by: RHSA-2013:0214 |
MD5: a524e11bfd6f12ff58f37805ab522046 SHA-256: 2e991a7a09ff8f8783d1af688b46bca2f987097c5df572797265b91e7a657764 |
| nspr-devel-4.9.1-4.el5_8.ia64.rpm File outdated by: RHSA-2013:0214 |
MD5: 8417890039fd5f9f48d81f16187b48d1 SHA-256: a7f830b938270ed5faba2a6af170235fe72656e5fa01b1ac32e7426b95facaa8 |
| nss-3.13.5-4.el5_8.i386.rpm File outdated by: RHSA-2013:0214 |
MD5: 389ec3611e53cf8f4126c0ab2198ef8d SHA-256: 2978043e421e9c28e3f11d42fb3d09b275984f213bdfe2660b696e73f3cb1c96 |
| nss-3.13.5-4.el5_8.ia64.rpm File outdated by: RHSA-2013:0214 |
MD5: 4b47e4d0557f11f532e2340c311ef16f SHA-256: 935cd24657c728861db602035e215125ed4d7296fa7ecbfb2bba65749ba85bb4 |
| nss-debuginfo-3.13.5-4.el5_8.i386.rpm File outdated by: RHSA-2013:0214 |
MD5: 026c5bce832f41588ced78d179f80077 SHA-256: 092c0d2cdc62376175fc70385dd4a399d481a1afe163506fcb7d4dc055cd7253 |
| nss-debuginfo-3.13.5-4.el5_8.ia64.rpm File outdated by: RHSA-2013:0214 |
MD5: 16edd8c215c45b6919b62d263e93f58a SHA-256: 1054758e04b50a30c8f5e91c42f5bf3fddba90cfd9ddf7e2dbe07fc999572edb |
| nss-devel-3.13.5-4.el5_8.ia64.rpm File outdated by: RHSA-2013:0214 |
MD5: 03e5b35f78c8752c246febec6f25c711 SHA-256: 4a5fdb361edf5225180848260c31adc85672b2ec98f96edf0ee9d0cc7e8989b5 |
| nss-pkcs11-devel-3.13.5-4.el5_8.ia64.rpm File outdated by: RHSA-2013:0214 |
MD5: d7ddc9b54913f3809ddf7272213b5032 SHA-256: 79021ad13c947faea0f05b327d3255c08f83db85a11226b49a4858ce6ae4ece7 |
| nss-tools-3.13.5-4.el5_8.ia64.rpm File outdated by: RHSA-2013:0214 |
MD5: 50675ae134cd0fa66af0a16004da078a SHA-256: 200060c25a312c4e6be912cd7e8de5f62de04c88b2feb9f0df44872f479b174d |
| PPC: | |
| nspr-4.9.1-4.el5_8.ppc.rpm File outdated by: RHSA-2013:0214 |
MD5: 120c91513973e51628ae7677b5e5379d SHA-256: a1e41fe142ff9a00e89c14f5513f672a33f584a2c938364077ca9d8c7a0baa8f |
| nspr-4.9.1-4.el5_8.ppc64.rpm File outdated by: RHSA-2013:0214 |
MD5: 145b9621c9636505400b2d7f70074130 SHA-256: d966ca4752b2415e2390615e2942764051e4f860140fa3c01f8e04ddfb90285a |
| nspr-debuginfo-4.9.1-4.el5_8.ppc.rpm File outdated by: RHSA-2013:0214 |
MD5: 0575bb1dd071523d19fa935aa56169ad SHA-256: 7a66016152731bf27e54dc280b720fba5064920e6e1d30fb416142d1a78fac65 |
| nspr-debuginfo-4.9.1-4.el5_8.ppc64.rpm File outdated by: RHSA-2013:0214 |
MD5: acb8a29b8cc09760e4bcb9fbe2cf2909 SHA-256: 90f862de5969e9b9fc688966585d15a7b9d7f8f8ea4c5c7bad7f7b0751686aeb |
| nspr-devel-4.9.1-4.el5_8.ppc.rpm File outdated by: RHSA-2013:0214 |
MD5: a54ce268532714262c62d6a8ab77a6ea SHA-256: e1a62003b26b8ade6f0401217f26dbeef6fced27addd0a55fd16a3dfa3a94c3c |
| nspr-devel-4.9.1-4.el5_8.ppc64.rpm File outdated by: RHSA-2013:0214 |
MD5: 8c47ca06622a67173892ebbaebe45959 SHA-256: 5206f1258b101d855a35d89d440fef87ee71693e0c0208228c86350d06f53789 |
| nss-3.13.5-4.el5_8.ppc.rpm File outdated by: RHSA-2013:0214 |
MD5: 56847d3b1cddff9f7039fb2afc1bc6ea SHA-256: 8e5f1a221a0e709d6fc616b3d975c2ee991dc47dc43f19deae4e8ac34bf99fd7 |
| nss-3.13.5-4.el5_8.ppc64.rpm File outdated by: RHSA-2013:0214 |
MD5: e6f4e8e56a4bb11fcf4e9197fc56eda9 SHA-256: 73c99adf0c2946ff8d686bdef58e6363ed9ede56d4098f3013360078d6e7144a |
| nss-debuginfo-3.13.5-4.el5_8.ppc.rpm File outdated by: RHSA-2013:0214 |
MD5: 0ed58bfd059147a5de177f164a6199bd SHA-256: 7caf1bf1ece3df01ec7350bab6230dfb09fb9c3f46634627b0ee4dbf599df5c2 |
| nss-debuginfo-3.13.5-4.el5_8.ppc64.rpm File outdated by: RHSA-2013:0214 |
MD5: 9efec4004a7daba42b5ea37e84c7a48e SHA-256: f673043e12f7908aaa136d90ad6656d44234c533c6ffb242f4a4f4bfa28adfe5 |
| nss-devel-3.13.5-4.el5_8.ppc.rpm File outdated by: RHSA-2013:0214 |
MD5: b5c66bfda8ea8c831c2ee074c7b0f8c6 SHA-256: 819703f5b68a223f60d8fc3defceda73d0b343850e117a6727575faa07890d01 |
| nss-devel-3.13.5-4.el5_8.ppc64.rpm File outdated by: RHSA-2013:0214 |
MD5: a2419a625289668e3acce89cd55385ce SHA-256: d3ad12ee2d332922ad846059b813ee2742a1e8d3f3c0a462d886e8c304a9c95e |
| nss-pkcs11-devel-3.13.5-4.el5_8.ppc.rpm File outdated by: RHSA-2013:0214 |
MD5: 91123521a5abc365bbe2b41897bec72f SHA-256: 6cc67ee92e6a1f51be013bbca7c264953246b8f125e0b762bc581deb6e776e4f |
| nss-pkcs11-devel-3.13.5-4.el5_8.ppc64.rpm File outdated by: RHSA-2013:0214 |
MD5: 82604a244810d7f0f03ac9615f9f1c0c SHA-256: aaa7e40fb39ebbe4e97eb092554e7f0762665e83a6600d1286088409379eae57 |
| nss-tools-3.13.5-4.el5_8.ppc.rpm File outdated by: RHSA-2013:0214 |
MD5: e36a8950cbe298ea23660368b3984227 SHA-256: 3180101bf23d809cb6c6de752c3a2fde753536351babaea2554c46e30db99d6e |
| s390x: | |
| nspr-4.9.1-4.el5_8.s390.rpm File outdated by: RHSA-2013:0214 |
MD5: c096935d99edce4cefac6d29e03f5e92 SHA-256: edae2d0b37444b1b11d24253d6e2337a27ab55fe7d30d749d3f7dd0e26d443b3 |
| nspr-4.9.1-4.el5_8.s390x.rpm File outdated by: RHSA-2013:0214 |
MD5: 4dbb6e59215183041d9fadc0febdd389 SHA-256: a584dd099971e619a831840b5733fe20e3a1df844ff02d4303c5b39110eb2ee3 |
| nspr-debuginfo-4.9.1-4.el5_8.s390.rpm File outdated by: RHSA-2013:0214 |
MD5: 1b9cee6c36c32309f6ae5ac7ff8abd07 SHA-256: eb27bb9a13a7d5bdc81af922763426fc49bc1ea19a70078a6af930d7fa6edf24 |
| nspr-debuginfo-4.9.1-4.el5_8.s390x.rpm File outdated by: RHSA-2013:0214 |
MD5: 75ee223df3c3a601507868902cb3fbb1 SHA-256: 135d94a49cf691403b602df9316d3fba24dd9f70051789b535d0f112a2708f5a |
| nspr-devel-4.9.1-4.el5_8.s390.rpm File outdated by: RHSA-2013:0214 |
MD5: 495a036c74c4b99acaca46099519ce38 SHA-256: 1ba4e6ccee61093417b840dd1b4dc0ee5d53b2dbb193e0f198b87063eea412f5 |
| nspr-devel-4.9.1-4.el5_8.s390x.rpm File outdated by: RHSA-2013:0214 |
MD5: 7e678a718e2d6b06f6f98830c8d25c71 SHA-256: 4cd4c027324b1c1b4514af4d5d487d06850635cf68eb89f07d5c3e2fd58a883a |
| nss-3.13.5-4.el5_8.s390.rpm File outdated by: RHSA-2013:0214 |
MD5: f7089cf205db74f90a0e9ff090ba4edf SHA-256: 79046ceeaee432e7ad5014c8263838b40ffa908d91c58c2bc3b37cfb992e3acc |
| nss-3.13.5-4.el5_8.s390x.rpm File outdated by: RHSA-2013:0214 |
MD5: babd287704b137d0dfceeb1edc2009f9 SHA-256: 985c4a2a5035560dc213187f22c98e37340f3e94c2efb3f486b83582b96d8067 |
| nss-debuginfo-3.13.5-4.el5_8.s390.rpm File outdated by: RHSA-2013:0214 |
MD5: 3f74a062cf58d5bddc781c492328a903 SHA-256: 8e72f1b2ba64304899d6b9c39a149385cafa828c2c940e93c92ef442b6fa0ccf |
| nss-debuginfo-3.13.5-4.el5_8.s390x.rpm File outdated by: RHSA-2013:0214 |
MD5: 78aac911314e860b97d6e0bac546ddcf SHA-256: da23367f7c1faae98d7bb53c0b0edc773288313bed428ae28ad7c220436b9ebf |
| nss-devel-3.13.5-4.el5_8.s390.rpm File outdated by: RHSA-2013:0214 |
MD5: 19dbe11adc6854006962f6b1b593891a SHA-256: 118e6743075028f658bc839cbe48869fa08ee07bdba5bf020c576af9a5e464ba |
| nss-devel-3.13.5-4.el5_8.s390x.rpm File outdated by: RHSA-2013:0214 |
MD5: bcd241bb9959a67ba125ae951e9a9872 SHA-256: 7521d18a49445d6168adb69054179873b3770144a13d9f692de766a8d2bf0c86 |
| nss-pkcs11-devel-3.13.5-4.el5_8.s390.rpm File outdated by: RHSA-2013:0214 |
MD5: 1ca013210db9ea2d29774870e41a8801 SHA-256: a7b94caf886b0d8a8736db0dfda92eb0fbcb60220bd61ec9b6a28377a9ac4a5b |
| nss-pkcs11-devel-3.13.5-4.el5_8.s390x.rpm File outdated by: RHSA-2013:0214 |
MD5: 7615d7fd41941b438de605fa00de98e5 SHA-256: d4865c0e8adda4254d167ec4be46808799392dd6541341db0e1508bb9d341d42 |
| nss-tools-3.13.5-4.el5_8.s390x.rpm File outdated by: RHSA-2013:0214 |
MD5: 0a86f83bc2a11534898b8b73a7369cad SHA-256: 4f78f9f85e37f5fec0711a3c1671bf74c660163b5521b24ae0f138f9aef10f41 |
| x86_64: | |
| nspr-4.9.1-4.el5_8.i386.rpm File outdated by: RHSA-2013:0214 |
MD5: a532d3fd394d8ba32978db4507fc40fe SHA-256: 5099ba272f7ecf3467ba7cbfe2b2264f5df60ec8780a0075177aef903d2163aa |
| nspr-4.9.1-4.el5_8.x86_64.rpm File outdated by: RHSA-2013:0214 |
MD5: 4b36b84150bdb53bbf225bc1e097e48e SHA-256: c59b40eb7516056825aaa11570b1dda2e3045ab6ed10203cd83935baee776b2e |
| nspr-debuginfo-4.9.1-4.el5_8.i386.rpm File outdated by: RHSA-2013:0214 |
MD5: ad78ebe1e733a7fbbefc297794335437 SHA-256: abf96ff8dcc26e31dfe63db04fabfcb788663cf660fd47855ec0c384299aa836 |
| nspr-debuginfo-4.9.1-4.el5_8.x86_64.rpm File outdated by: RHSA-2013:0214 |
MD5: db03f74b7004a6a7faabfd7a6a7cbd4d SHA-256: 2e195ea84b7f157e08a2c771f9ec2be9d7d83c488556d1f511f173983f5b38bd |
| nspr-devel-4.9.1-4.el5_8.i386.rpm File outdated by: RHSA-2013:0214 |
MD5: 0141c48cee48aed823814cc3bb7d1877 SHA-256: ab638a8eb391f3dda52091d84aea6efdf4e4298a39b35df51138a76fed8093a8 |
| nspr-devel-4.9.1-4.el5_8.x86_64.rpm File outdated by: RHSA-2013:0214 |
MD5: 34f6918eeb7c1c98ca1b2e3fc0b4dabb SHA-256: 8a4c3540fcf1a68d529d9297c1cdda5d06400e73da3571051834480b771fd069 |
| nss-3.13.5-4.el5_8.i386.rpm File outdated by: RHSA-2013:0214 |
MD5: 389ec3611e53cf8f4126c0ab2198ef8d SHA-256: 2978043e421e9c28e3f11d42fb3d09b275984f213bdfe2660b696e73f3cb1c96 |
| nss-3.13.5-4.el5_8.x86_64.rpm File outdated by: RHSA-2013:0214 |
MD5: 60c57de3f3439e517d6733190a01d71c SHA-256: d79527aa1dec15634ddd4a366b77eb8817735e26dc8dd9b2f5d6444d1ffadb6e |
| nss-debuginfo-3.13.5-4.el5_8.i386.rpm File outdated by: RHSA-2013:0214 |
MD5: 026c5bce832f41588ced78d179f80077 SHA-256: 092c0d2cdc62376175fc70385dd4a399d481a1afe163506fcb7d4dc055cd7253 |
| nss-debuginfo-3.13.5-4.el5_8.x86_64.rpm File outdated by: RHSA-2013:0214 |
MD5: ea1ca2fb2a9fede172e06ab7086374bf SHA-256: b8eefb472c8cdb0325ea58a81df7b9df0e99a81110e929ff9eae30f4534a1914 |
| nss-devel-3.13.5-4.el5_8.i386.rpm File outdated by: RHSA-2013:0214 |
MD5: c8f1ce7972505f00b1cb32eab9adaf49 SHA-256: fd2d64cf4f5be5e2aed41d985f95bf8952469ccff62d1b5582a37d6d4a643c6c |
| nss-devel-3.13.5-4.el5_8.x86_64.rpm File outdated by: RHSA-2013:0214 |
MD5: d4c9cc35e646a782d73c625b741af78e SHA-256: 9aaf9bf33943f209703d2c413c120714b889c935ee7f4e3772615ece570e7c12 |
| nss-pkcs11-devel-3.13.5-4.el5_8.i386.rpm File outdated by: RHSA-2013:0214 |
MD5: 3cda6a79a81cc1c20a8b9c863930b5d7 SHA-256: 212c9a17e6621fe19d0c446b6688b005049bd220d52e2e8f64e8967b50e2f1c5 |
| nss-pkcs11-devel-3.13.5-4.el5_8.x86_64.rpm File outdated by: RHSA-2013:0214 |
MD5: 0251563dde00bfcdd594de39d19c2353 SHA-256: bb8f6fb3a3cdd080c06459fc16c47804a1df1b0f0b633f0773b58c207e54c90c |
| nss-tools-3.13.5-4.el5_8.x86_64.rpm File outdated by: RHSA-2013:0214 |
MD5: ccc70e3c593a1ec3dc7e1822b10a4a1c SHA-256: 851d6a04e7423a02030578b6b913c3197e3b2a81bd01cfeef0222ad03d245136 |
| Red Hat Enterprise Linux Desktop (v. 5 client) | |
| SRPMS: | |
| nspr-4.9.1-4.el5_8.src.rpm File outdated by: RHSA-2013:0214 |
MD5: cdff12878816bfeb0ed75c75c75713fb SHA-256: 31972c1de3d5992813a5617cb5ff0109566d6ef2e5dc3facd0c56436fed02f57 |
| nss-3.13.5-4.el5_8.src.rpm File outdated by: RHSA-2013:0214 |
MD5: 91962375bac18d8b3227d9f64ca420c0 SHA-256: 0c2aa3633dccef5cb1dadd0628d203480dee75e676e3b5e4e7e66cc1609bee48 |
| IA-32: | |
| nspr-4.9.1-4.el5_8.i386.rpm File outdated by: RHSA-2013:0214 |
MD5: a532d3fd394d8ba32978db4507fc40fe SHA-256: 5099ba272f7ecf3467ba7cbfe2b2264f5df60ec8780a0075177aef903d2163aa |
| nspr-debuginfo-4.9.1-4.el5_8.i386.rpm File outdated by: RHSA-2013:0214 |
MD5: ad78ebe1e733a7fbbefc297794335437 SHA-256: abf96ff8dcc26e31dfe63db04fabfcb788663cf660fd47855ec0c384299aa836 |
| nss-3.13.5-4.el5_8.i386.rpm File outdated by: RHSA-2013:0214 |
MD5: 389ec3611e53cf8f4126c0ab2198ef8d SHA-256: 2978043e421e9c28e3f11d42fb3d09b275984f213bdfe2660b696e73f3cb1c96 |
| nss-debuginfo-3.13.5-4.el5_8.i386.rpm File outdated by: RHSA-2013:0214 |
MD5: 026c5bce832f41588ced78d179f80077 SHA-256: 092c0d2cdc62376175fc70385dd4a399d481a1afe163506fcb7d4dc055cd7253 |
| nss-tools-3.13.5-4.el5_8.i386.rpm File outdated by: RHSA-2013:0214 |
MD5: 36b1b484f73a3d2e614abab1b24d1a0b SHA-256: 2d3039067a49279bf9b879356c98c66f42e4d1a0dfa2faba129c0b3567ceb1d9 |
| x86_64: | |
| nspr-4.9.1-4.el5_8.i386.rpm File outdated by: RHSA-2013:0214 |
MD5: a532d3fd394d8ba32978db4507fc40fe SHA-256: 5099ba272f7ecf3467ba7cbfe2b2264f5df60ec8780a0075177aef903d2163aa |
| nspr-4.9.1-4.el5_8.x86_64.rpm File outdated by: RHSA-2013:0214 |
MD5: 4b36b84150bdb53bbf225bc1e097e48e SHA-256: c59b40eb7516056825aaa11570b1dda2e3045ab6ed10203cd83935baee776b2e |
| nspr-debuginfo-4.9.1-4.el5_8.i386.rpm File outdated by: RHSA-2013:0214 |
MD5: ad78ebe1e733a7fbbefc297794335437 SHA-256: abf96ff8dcc26e31dfe63db04fabfcb788663cf660fd47855ec0c384299aa836 |
| nspr-debuginfo-4.9.1-4.el5_8.x86_64.rpm File outdated by: RHSA-2013:0214 |
MD5: db03f74b7004a6a7faabfd7a6a7cbd4d SHA-256: 2e195ea84b7f157e08a2c771f9ec2be9d7d83c488556d1f511f173983f5b38bd |
| nss-3.13.5-4.el5_8.i386.rpm File outdated by: RHSA-2013:0214 |
MD5: 389ec3611e53cf8f4126c0ab2198ef8d SHA-256: 2978043e421e9c28e3f11d42fb3d09b275984f213bdfe2660b696e73f3cb1c96 |
| nss-3.13.5-4.el5_8.x86_64.rpm File outdated by: RHSA-2013:0214 |
MD5: 60c57de3f3439e517d6733190a01d71c SHA-256: d79527aa1dec15634ddd4a366b77eb8817735e26dc8dd9b2f5d6444d1ffadb6e |
| nss-debuginfo-3.13.5-4.el5_8.i386.rpm File outdated by: RHSA-2013:0214 |
MD5: 026c5bce832f41588ced78d179f80077 SHA-256: 092c0d2cdc62376175fc70385dd4a399d481a1afe163506fcb7d4dc055cd7253 |
| nss-debuginfo-3.13.5-4.el5_8.x86_64.rpm File outdated by: RHSA-2013:0214 |
MD5: ea1ca2fb2a9fede172e06ab7086374bf SHA-256: b8eefb472c8cdb0325ea58a81df7b9df0e99a81110e929ff9eae30f4534a1914 |
| nss-tools-3.13.5-4.el5_8.x86_64.rpm File outdated by: RHSA-2013:0214 |
MD5: ccc70e3c593a1ec3dc7e1822b10a4a1c SHA-256: 851d6a04e7423a02030578b6b913c3197e3b2a81bd01cfeef0222ad03d245136 |
| (The unlinked packages above are only available from the Red Hat Network) | |
Bugs fixed (see bugzilla for more information)
798533 - nss: Distrust MITM subCAs issued by TrustWave
827833 - CVE-2012-0441 nss: NSS parsing errors with zero length items
834219 - Update RHEL 5.x to NSS 3.13.5 and NSPR 4.9.1 for Mozilla 10.0.6
834220 - Update RHEL 5.x to NSPR 4.9.1 for Mozilla 10.0.6
References
https://www.redhat.com/security/data/cve/CVE-2012-0441.html
https://access.redhat.com/security/updates/classification/#moderate
http://www.mozilla.org/security/announce/2012/mfsa2012-39.html
https://access.redhat.com/security/updates/classification/#moderate
http://www.mozilla.org/security/announce/2012/mfsa2012-39.html
These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package
The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/
