nss 3.12.9+ckbi-1.82-0ubuntu0.10.04.4 source package in Ubuntu

Changelog

nss (3.12.9+ckbi-1.82-0ubuntu0.10.04.4) lucid-security; urgency=low

  * SECURITY UPDATE: denial of service in QuickDER decoder
    - debian/patches/CVE-2012-0441.patch: properly handle zero-length basic
      constraints and zero-length fields in
      nss/mozilla/security/nss/lib/softoken/legacydb/keydb.c,
      nss/mozilla/security/nss/lib/softoken/legacydb/lgcreate.c,
      nss/mozilla/security/nss/lib/softoken/legacydb/lowkey.c,
      nss/mozilla/security/nss/lib/softoken/legacydb/lowkeyti.h,
      nss/mozilla/security/nss/lib/util/quickder.c.
    - CVE-2012-0441
  * debian/rules: added a workaround to get package built on more recent
    kernels.
 -- Marc Deslauriers <email address hidden>   Mon, 30 Jul 2012 14:29:03 -0400

Upload details

Uploaded by:
Marc Deslauriers on 2012-07-30
Uploaded to:
Lucid
Original maintainer:
Ubuntu-Mozilla-Team
Architectures:
any
Section:
libs
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
nss_3.12.9+ckbi-1.82.orig.tar.gz 5.7 MiB 2c08599d6169dce782163c7a15c7636cce510301ba953ee0f6bc839d79069966
nss_3.12.9+ckbi-1.82-0ubuntu0.10.04.4.diff.gz 67.3 KiB 038c9edd0de4f2bf39ea7a9c934ed7d098983eb326d527f868f401be28f65bda
nss_3.12.9+ckbi-1.82-0ubuntu0.10.04.4.dsc 2.0 KiB c24587dd051938088e5c7c8aef8ba8ff29e4507bf69926479903fbcc3fc362a3

View changes file

Binary packages built by this source

libnss3-0d: Transition package for Network Security Service libraries

 This is a set of libraries designed to support cross-platform development
 of security-enabled client and server applications. It can support SSLv2
 and v4, TLS, PKCS #5, #7, #11, #12, S/MIME, X.509 v3 certificates and
 other security standards.

libnss3-1d: Network Security Service libraries

 This is a set of libraries designed to support cross-platform development
 of security-enabled client and server applications. It can support SSLv2
 and v4, TLS, PKCS #5, #7, #11, #12, S/MIME, X.509 v3 certificates and
 other security standards.

libnss3-1d-dbg: Development files for the Network Security Service libraries

 This is a set of libraries designed to support cross-platform development
 of security-enabled client and server applications. It can support SSLv2
 and v4, TLS, PKCS #5, #7, #11, #12, S/MIME, X.509 v3 certificates and
 other security standards.
 .
 This package provides the debugging symbols for the library.

libnss3-dev: Development files for the Network Security Service libraries

 This is a set of libraries designed to support cross-platform development
 of security-enabled client and server applications. It can support SSLv2
 and v4, TLS, PKCS #5, #7, #11, #12, S/MIME, X.509 v3 certificates and
 other security standards.
 .
 Install this package if you wish to develop your own programs using the
 Network Security Service Libraries.

libnss3-tools: Network Security Service tools

 This is a set of tools on top of the Network Security Service libraries.
 This package includes:
  * certutil: manages certificate and key databases (cert7.db and key3.db)
  * modutil: manages the database of PKCS11 modules (secmod.db)
  * pk12util: imports/exports keys and certificates between the cert/key
    databases and files in PKCS12 format.
  * shlibsign: creates .chk files for use in FIPS mode.
  * signtool: creates digitally-signed jar archives containing files and/or
    code.
  * ssltap: proxy requests for an SSL server and display the contents of
    the messages exchanged between the client and server.