Format: 1.8 Date: Fri, 12 Jul 2019 08:16:27 -0400 Source: nss Binary: libnss3 libnss3-tools libnss3-dev libnss3-dbg Architecture: arm64 Version: 2:3.35-2ubuntu2.3 Distribution: bionic Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Marc Deslauriers Description: libnss3 - Network Security Service libraries libnss3-dbg - Debugging symbols for the Network Security Service libraries libnss3-dev - Development files for the Network Security Service libraries libnss3-tools - Network Security Service tools Changes: nss (2:3.35-2ubuntu2.3) bionic-security; urgency=medium . * SECURITY UPDATE: OOB read when importing a curve25519 private key - debian/patches/CVE-2019-11719.patch: don't unnecessarily strip leading 0's from key material during PKCS11 import in nss/lib/freebl/ecl/ecp_25519.c, nss/lib/pk11wrap/pk11akey.c, nss/lib/pk11wrap/pk11cert.c, nss/lib/pk11wrap/pk11pk12.c, nss/lib/softoken/legacydb/lgattr.c, nss/lib/softoken/pkcs11c.c. - CVE-2019-11719 * SECURITY UPDATE: segfault via empty or malformed p256-ECDH public keys - debian/patches/CVE-2019-11729-1.patch: more thorough input checking in nss/lib/cryptohi/seckey.c, nss/lib/freebl/dh.c, nss/lib/freebl/ec.c, nss/lib/util/quickder.c. - debian/patches/CVE-2019-11729-2.patch: ignore spki decode failures on negative tests in nss/gtests/pk11_gtest/pk11_curve25519_unittest.cc. - CVE-2019-11729 Checksums-Sha1: d05b5ae25f3e14668b56b788d3739f1bfd11d1dc 9619764 libnss3-dbg_3.35-2ubuntu2.3_arm64.deb c9670c91c29183ae9d5cb69cbe5a8e2dfc3b92d8 224216 libnss3-dev_3.35-2ubuntu2.3_arm64.deb d4a09f1bc78a5c4c946ead98917c3fe059661c57 737904 libnss3-tools_3.35-2ubuntu2.3_arm64.deb 52f4d99086fb7cc22fd8f7d5962f2138d79bfb01 960612 libnss3_3.35-2ubuntu2.3_arm64.deb c24505f53c9e47bcc95cd7ea14963e7e6038e6ed 6074 nss_3.35-2ubuntu2.3_arm64.buildinfo Checksums-Sha256: e80200a9dd2496081a57413adfd661c24a33a6ad5d20ca17ccef7378313842fb 9619764 libnss3-dbg_3.35-2ubuntu2.3_arm64.deb 2f8afb40c9361b06041e7d14e1c3247debd3db0a39291f58875f93b53ce94c77 224216 libnss3-dev_3.35-2ubuntu2.3_arm64.deb 42c7bcc038f417f8289fcdcdfc2690dbaab9c3c030d3176116d3c5230e9d53e0 737904 libnss3-tools_3.35-2ubuntu2.3_arm64.deb 81eec6bb9193da2eb5e73a965b7bca22a252e0ed5053a446cc6c1fc98685f02b 960612 libnss3_3.35-2ubuntu2.3_arm64.deb f5460b65c2790534e75e1e1bee96ab453d7d3de86bd289bcfa5f2ddcc1bec21b 6074 nss_3.35-2ubuntu2.3_arm64.buildinfo Files: fc648bf0ae352acd2ec1226f4577e1c2 9619764 debug extra libnss3-dbg_3.35-2ubuntu2.3_arm64.deb d600a6eebb37373f515aeb51e7f4bd89 224216 libdevel optional libnss3-dev_3.35-2ubuntu2.3_arm64.deb 4045446f6e1f263df4143b6bfcd37eaf 737904 admin optional libnss3-tools_3.35-2ubuntu2.3_arm64.deb e252417ee9dd3c723bc7205c1dc3eb47 960612 libs optional libnss3_3.35-2ubuntu2.3_arm64.deb e8c39b07496effa6f2169e32a87844b5 6074 libs optional nss_3.35-2ubuntu2.3_arm64.buildinfo Original-Maintainer: Maintainers of Mozilla-related packages