Ubuntu

“nss” 3.12.9+ckbi-1.82-0ubuntu0.10.04.4 source package in The Lucid Lynx

Publishing history

3.12.9+ckbi-1.82-0ubuntu0.10.04.4
SUPERSEDED: Lucid pocket Updates in component main and section libs
  • Removed from disk on 2013-01-16.
  • Removal requested on 2013-01-15.
  • Superseded on 2013-01-14 by nss - 3.14.1-0ckbi1.93ubuntu.0.10.04.1
  • Published on 2012-08-16
  • Copied from ubuntu lucid in Private PPA for Ubuntu Security Team by Ubuntu Archive Robot
3.12.9+ckbi-1.82-0ubuntu0.10.04.4
SUPERSEDED: Lucid pocket Security in component main and section libs
  • Removed from disk on 2013-01-16.
  • Removal requested on 2013-01-15.
  • Superseded on 2013-01-14 by nss - 3.14.1-0ckbi1.93ubuntu.0.10.04.1
  • Published on 2012-08-16
  • Copied from ubuntu lucid in Private PPA for Ubuntu Security Team by Marc Deslauriers

Builds

Changelog

nss (3.12.9+ckbi-1.82-0ubuntu0.10.04.4) lucid-security; urgency=low

  * SECURITY UPDATE: denial of service in QuickDER decoder
    - debian/patches/CVE-2012-0441.patch: properly handle zero-length basic
      constraints and zero-length fields in
      nss/mozilla/security/nss/lib/softoken/legacydb/keydb.c,
      nss/mozilla/security/nss/lib/softoken/legacydb/lgcreate.c,
      nss/mozilla/security/nss/lib/softoken/legacydb/lowkey.c,
      nss/mozilla/security/nss/lib/softoken/legacydb/lowkeyti.h,
      nss/mozilla/security/nss/lib/util/quickder.c.
    - CVE-2012-0441
  * debian/rules: added a workaround to get package built on more recent
    kernels.
 -- Marc Deslauriers <email address hidden>   Mon, 30 Jul 2012 14:29:03 -0400