Format: 1.8 Date: Wed, 12 Dec 2018 14:51:11 -0500 Source: nss Binary: libnss3 libnss3-tools libnss3-dev libnss3-dbg Architecture: s390x Version: 2:3.35-2ubuntu2.1 Distribution: bionic Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Marc Deslauriers Description: libnss3 - Network Security Service libraries libnss3-dbg - Debugging symbols for the Network Security Service libraries libnss3-dev - Development files for the Network Security Service libraries libnss3-tools - Network Security Service tools Changes: nss (2:3.35-2ubuntu2.1) bionic-security; urgency=medium . * SECURITY UPDATE: side-channel attack on ECDSA signatures - debian/patches/CVE-2018-0495.patch: improve ecdsa and dsa in nss/lib/freebl/dsa.c, nss/lib/freebl/ec.c. - CVE-2018-0495 * SECURITY UPDATE: ServerHello.random is all zero in v2 ClientHello - debian/patches/CVE-2018-12384-1.patch: fix random logic in nss/lib/ssl/ssl3con.c. - debian/patches/CVE-2018-12384-2.patch: add tests to nss/gtests/ssl_gtest/ssl_loopback_unittest.cc, nss/gtests/ssl_gtest/ssl_v2_client_hello_unittest.cc. - CVE-2018-12384 * SECURITY UPDATE: cache side-channel variant of the Bleichenbacher attack - debian/patches/CVE-2018-12404-1.patch: improve RSA key exchange handling in nss/lib/ssl/ssl3con.c. - debian/patches/CVE-2018-12404-2.patch: improve padding checks in RSA_DecryptBlock in nss/gtests/freebl_gtest/rsa_unittest.cc, nss/lib/freebl/rsapkcs.c. - debian/patches/CVE-2018-12404-3.patch: add constant time mp_to_fixlen_octets in nss/gtests/freebl_gtest/mpi_unittest.cc, nss/lib/freebl/mpi/mpi.c, nss/lib/freebl/mpi/mpi.h. - CVE-2018-12404 Checksums-Sha1: d18c606254976c1e89e01edc6b01c90b0bf37dc4 9651244 libnss3-dbg_3.35-2ubuntu2.1_s390x.deb 1300e1315e2b4db3177daeb74296a528b20fbde4 226208 libnss3-dev_3.35-2ubuntu2.1_s390x.deb 01dd1ef423c57471e74c01f9227658dbf38d031c 803784 libnss3-tools_3.35-2ubuntu2.1_s390x.deb 9466e887e565577bb995a82451f41890738b49db 1032488 libnss3_3.35-2ubuntu2.1_s390x.deb e21e82102d21420e870c0ac0e3faea62630faef9 5854 nss_3.35-2ubuntu2.1_s390x.buildinfo Checksums-Sha256: 5a2339f13b4ddf46029903e65fa95bce90f0f9457354a85831d7565a40e5e79f 9651244 libnss3-dbg_3.35-2ubuntu2.1_s390x.deb 25c12564ab7d0668488b945eecc788ef41c6bda4a53824b42108899304391a85 226208 libnss3-dev_3.35-2ubuntu2.1_s390x.deb f1daa812b52fd9e13395985a54163c401ac925be8e2dee3b549d52de8ed597e9 803784 libnss3-tools_3.35-2ubuntu2.1_s390x.deb 7b8e111542074590f19da624ec576b46c1705df91af74a0bdf6f82680510af13 1032488 libnss3_3.35-2ubuntu2.1_s390x.deb c88362cf66428b0ecdef5afd6335768a14bf825c89697436630ac550e9d920d1 5854 nss_3.35-2ubuntu2.1_s390x.buildinfo Files: cbfcfff55b01843408d02704978537ac 9651244 debug extra libnss3-dbg_3.35-2ubuntu2.1_s390x.deb 6ffc971d2dbc0d0cc53aad65ffebeed9 226208 libdevel optional libnss3-dev_3.35-2ubuntu2.1_s390x.deb 3c9ec2735b1e3ae91d703da0318faf9a 803784 admin optional libnss3-tools_3.35-2ubuntu2.1_s390x.deb f3f67bf3a5597d2f7afeb710d8a203b6 1032488 libs optional libnss3_3.35-2ubuntu2.1_s390x.deb f5daceb35a68362b83eed028eca266d5 5854 libs optional nss_3.35-2ubuntu2.1_s390x.buildinfo Original-Maintainer: Maintainers of Mozilla-related packages