nss 2:3.28.4-0ubuntu0.16.04.10 source package in Ubuntu

Changelog

nss (2:3.28.4-0ubuntu0.16.04.10) xenial-security; urgency=medium

  * SECURITY UPDATE: Possible wrong length for cryptographic primitives input
    - debian/patches/CVE-2019-17006.patch: adds checks for length of crypto
      primitives in nss/lib/freebl/chacha20poly1305.c,
      nss/lib/freebl/ctr.c, nss/lib/freebl/gcm.c,
      nss/lib/freebl/intel-gcm-wrap.c,
      nss/lib/freebl/rsapkcs.c.
    - CVE-2019-17006

 -- <email address hidden> (Leonidas S. Barbosa)  Tue, 07 Jan 2020 14:42:06 -0300

Upload details

Uploaded by:
Leonidas S. Barbosa
Uploaded to:
Xenial
Original maintainer:
Ubuntu Developers
Architectures:
any all
Section:
libs
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
nss_3.28.4.orig.tar.gz 7.1 MiB d5d4761778b8d4c378b2174c9e13e7abd20a6961f557d4fcc029af723ffd7189
nss_3.28.4-0ubuntu0.16.04.10.debian.tar.xz 44.1 KiB 6c0163e359d5be3e8189dccaafaaf4c4f3107d7c45a4064e73b01ee9f8b60298
nss_3.28.4-0ubuntu0.16.04.10.dsc 2.4 KiB 9c93d25bad349d3def5fdaa01588070d507f13c76cbd4dde866886b6197ef926

View changes file

Binary packages built by this source

libnss3: Network Security Service libraries

 This is a set of libraries designed to support cross-platform development
 of security-enabled client and server applications. It can support SSLv2
 and v4, TLS, PKCS #5, #7, #11, #12, S/MIME, X.509 v3 certificates and
 other security standards.

libnss3-1d: Network Security Service libraries - transitional package

 This is a transitional package to ensure smooth transition of all packages
 to libnss3.

libnss3-dbg: Debugging symbols for the Network Security Service libraries

 This is a set of libraries designed to support cross-platform development
 of security-enabled client and server applications. It can support SSLv2
 and v4, TLS, PKCS #5, #7, #11, #12, S/MIME, X.509 v3 certificates and
 other security standards.
 .
 This package provides the debugging symbols for the library.

libnss3-dbgsym: debug symbols for package libnss3

 This is a set of libraries designed to support cross-platform development
 of security-enabled client and server applications. It can support SSLv2
 and v4, TLS, PKCS #5, #7, #11, #12, S/MIME, X.509 v3 certificates and
 other security standards.

libnss3-dev: Development files for the Network Security Service libraries

 This is a set of libraries designed to support cross-platform development
 of security-enabled client and server applications. It can support SSLv2
 and v4, TLS, PKCS #5, #7, #11, #12, S/MIME, X.509 v3 certificates and
 other security standards.
 .
 Install this package if you wish to develop your own programs using the
 Network Security Service Libraries.

libnss3-nssdb: Network Security Security libraries - shared databases

 This package includes shared certificate and key databases.

libnss3-tools: Network Security Service tools

 This is a set of tools on top of the Network Security Service libraries.
 This package includes:
  * certutil: manages certificate and key databases (cert7.db and key3.db)
  * modutil: manages the database of PKCS11 modules (secmod.db)
  * pk12util: imports/exports keys and certificates between the cert/key
    databases and files in PKCS12 format.
  * shlibsign: creates .chk files for use in FIPS mode.
  * signtool: creates digitally-signed jar archives containing files and/or
    code.
  * ssltap: proxy requests for an SSL server and display the contents of
    the messages exchanged between the client and server.

libnss3-tools-dbgsym: debug symbols for package libnss3-tools

 This is a set of tools on top of the Network Security Service libraries.
 This package includes:
  * certutil: manages certificate and key databases (cert7.db and key3.db)
  * modutil: manages the database of PKCS11 modules (secmod.db)
  * pk12util: imports/exports keys and certificates between the cert/key
    databases and files in PKCS12 format.
  * shlibsign: creates .chk files for use in FIPS mode.
  * signtool: creates digitally-signed jar archives containing files and/or
    code.
  * ssltap: proxy requests for an SSL server and display the contents of
    the messages exchanged between the client and server.