Ubuntu

“nss” 3.12.9+ckbi-1.82-0ubuntu2.2 source package in The Natty Narwhal

Publishing history

3.12.9+ckbi-1.82-0ubuntu2.2
OBSOLETE: Natty pocket Updates in component main and section libs
  • Removed from disk on 2013-06-04.
  • Removal requested on 2013-06-04.
  • Published on 2012-08-16
  • Copied from ubuntu natty in Private PPA for Ubuntu Security Team by Ubuntu Archive Robot
3.12.9+ckbi-1.82-0ubuntu2.2
OBSOLETE: Natty pocket Security in component main and section libs
  • Removed from disk on 2013-06-04.
  • Removal requested on 2013-06-04.
  • Published on 2012-08-16
  • Copied from ubuntu natty in Private PPA for Ubuntu Security Team by Marc Deslauriers

Builds

Changelog

nss (3.12.9+ckbi-1.82-0ubuntu2.2) natty-security; urgency=low

  * SECURITY UPDATE: denial of service in QuickDER decoder
    - debian/patches/CVE-2012-0441.patch: properly handle zero-length basic
      constraints and zero-length fields in
      nss/mozilla/security/nss/lib/softoken/legacydb/keydb.c,
      nss/mozilla/security/nss/lib/softoken/legacydb/lgcreate.c,
      nss/mozilla/security/nss/lib/softoken/legacydb/lowkey.c,
      nss/mozilla/security/nss/lib/softoken/legacydb/lowkeyti.h,
      nss/mozilla/security/nss/lib/util/quickder.c.
    - CVE-2012-0441
  * debian/rules: added a workaround to get package built on more recent
    kernels.
 -- Marc Deslauriers <email address hidden>   Mon, 30 Jul 2012 14:25:20 -0400