-
nss (3.12.9+ckbi-1.82-0ubuntu0.9.10.1) karmic-security; urgency=low
* New upstream release v3.12.9 with updated ckbi module
(NSS_3_12_9_WITH_CKBI_1_82_RTM)
- SECURITY UPDATE: Update "builtin certificates" module (ckbi) to
explicitly mark the recently issued and revoked fraudulent certificates
as explicitly not trusted; NSS will report SEC_ERROR_UNTRUSTED_CERT when
attempting to verify one of these fraudulent certificates (LP: #741729)
* Add new symbols
- update debian/libnss3-1d.symbols
-- Micah Gersten <email address hidden> Mon, 28 Mar 2011 04:04:10 -0500
-
nss (3.12.8-0ubuntu0.9.10.1) karmic-security; urgency=low
* New upstream release v3.12.8 (NSS_3_12_8_RTM)
- Fix browser wildcard certificate validation issue
- Update root certs
- Fix SSL deadlocks
* Refresh patches:
- update debian/patches/38_kbsd.patch
- update debian/patches/97_SSL_RENEGOTIATE_TRANSITIONAL.patch
* Bump minimum nspr version to 4.8.6
- update debian/control
* Add new API to symbols file
- update debian/libnss3-1d.symbols
-- Chris Coulson <email address hidden> Mon, 04 Oct 2010 23:18:57 +0100
-
nss (3.12.6-0ubuntu0.9.10.2) karmic-security; urgency=low
* Generate missing checksum for libnssdbm3.so to make FIPS mode
work again (LP: #559881)
- see USN-927-2
- update debian/rules
-- Chris Coulson <email address hidden> Sat, 10 Apr 2010 19:14:52 +0100
-
nss (3.12.6-0ubuntu0.9.10.1) karmic-security; urgency=low
* New upstream release 3.12.6 RTM (NSS_3_12_6_RTM)
- fixes CVE-2009-3555 aka US-CERT VU#120541
* Adjust patches to changed upstream code base
- update debian/patches/38_kbsd.patch
- update debian/patches/38_mips64_build.patch
- update debian/patches/85_security_load.patch
* Remove patches that are merged upstream
- delete debian/patches/91_nonexec_stack.patch
- update debian/patches/series
* Bump nspr dependency to 4.8
- update debian/control
* Add new symbols for 3.12.6
- update debian/libnss3-1d.symbols
* Enable transitional scheme for SSL renegotiation
- add 97_SSL_RENEGOTIATE_TRANSITIONAL.patch
- update debian/patches/series
-- Chris Coulson <email address hidden> Wed, 31 Mar 2010 02:23:43 +0100
-
nss (3.12.3.1-0ubuntu2) karmic; urgency=low
* Add 91_nonexec_stack.patch: fix regression in stack memory
protectons caused by unmarked assembly (LP: #409864).
-- Kees Cook <email address hidden> Mon, 24 Aug 2009 15:03:19 -0700
-
nss (3.12.3.1-0ubuntu1) karmic; urgency=low
* new upstream release 3.12.3.1 RTM (NSS_3_12_3_1_RTM) (LP: #407549)
- see USN-810-1
-- Alexander Sack <email address hidden> Sat, 01 Aug 2009 17:05:48 +0200
-
nss (3.12.3-0ubuntu2) karmic; urgency=low
* new upstream release 3.12.3 RTM (NSS_3_12_3_RTM) (LP: #387751)
* adjust patches to changed upstream code base
- update debian/patches/38_kbsd.patch
* needs nspr >= 4.7.4
- update debian/control
* update 85_security_load.patch to latest debian version
- update debian/patches/85_security_load.patch
* add new symbols for 3.12.3
- update debian/libnss3-1d.symbols
* LP: #388350 - nss 3.12.3-0ubuntu2 ftbfs in karmic - shlibsign crashes; we add
debian/libnss3-1d/usr/lib/nss to LD_LIBRARY_PATH for the shlibsign invocation
used to sign libs in debian/rules
- update debian/rules
* append LD_LIBRARY_PATH to shlibsign invocation to make fakeroot builds happy
- update debian/rules
-- Alexander Sack <email address hidden> Wed, 17 Jun 2009 11:59:45 +0200
-
nss (3.12.3-0ubuntu1) karmic; urgency=low
* new upstream release 3.12.3 RTM (NSS_3_12_3_RTM) (LP: #387751)
* adjust patches to changed upstream code base
- update debian/patches/38_kbsd.patch
* needs nspr >= 4.7.4
- update debian/control
* update 85_security_load.patch to latest debian version
- update debian/patches/85_security_load.patch
* add new symbols for 3.12.3
- update debian/libnss3-1d.symbols
-- Alexander Sack <email address hidden> Tue, 16 Jun 2009 13:23:47 +0200
-
nss (3.12.2~rc1-0ubuntu2) jaunty; urgency=low
* LP: #316452 - ldconfig breaks/removes legacy links for
previously versioned library names during upgrade; the fix
prevents ldconfig from treating the transitional/backup files
as "libs" by using a prefix ("XNOLDCONFIG_")
- debian/libnspr4-0d.postinst
- debian/libnspr4-0d.postrm
- debian/libnspr4-0d.preinst
- debian/libnspr4-0d.prerm
-- Alexander Sack <email address hidden> Wed, 14 Jan 2009 13:27:07 +0100
