Ubuntu

“nss” 3.13.1.with.ckbi.1.88-1ubuntu6.1 source package in The Precise Pangolin

Publishing history

3.13.1.with.ckbi.1.88-1ubuntu6.1
SUPERSEDED: Precise pocket Updates in component main and section libs
  • Removed from disk on 2013-01-16.
  • Removal requested on 2013-01-15.
  • Superseded on 2013-01-14 by nss - 3.14.1-0ckbi1.93ubuntu.0.12.04.1
  • Published on 2012-08-21
  • Copied from ubuntu precise in Private PPA for Ubuntu Security Team by Ubuntu Archive Robot
3.13.1.with.ckbi.1.88-1ubuntu6.1
SUPERSEDED: Precise pocket Security in component main and section libs
  • Removed from disk on 2013-01-16.
  • Removal requested on 2013-01-15.
  • Superseded on 2013-01-14 by nss - 3.14.1-0ckbi1.93ubuntu.0.12.04.1
  • Published on 2012-08-21
  • Copied from ubuntu precise in Private PPA for Ubuntu Security Team by Marc Deslauriers

Builds

Changelog

nss (3.13.1.with.ckbi.1.88-1ubuntu6.1) precise-security; urgency=low

  * SECURITY UPDATE: denial of service in QuickDER decoder
    - debian/patches/CVE-2012-0441.patch: properly handle zero-length basic
      constraints and zero-length fields in
      nss/mozilla/security/nss/lib/softoken/legacydb/keydb.c,
      nss/mozilla/security/nss/lib/softoken/legacydb/lgcreate.c,
      nss/mozilla/security/nss/lib/softoken/legacydb/lowkey.c,
      nss/mozilla/security/nss/lib/softoken/legacydb/lowkeyti.h,
      nss/mozilla/security/nss/lib/util/quickder.c.
    - CVE-2012-0441
 -- Marc Deslauriers <email address hidden>   Thu, 16 Aug 2012 10:57:28 -0400