Format: 1.8 Date: Fri, 12 Jul 2019 08:16:27 -0400 Source: nss Binary: libnss3 libnss3-tools libnss3-dev libnss3-dbg Architecture: s390x Version: 2:3.35-2ubuntu2.3 Distribution: bionic Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Marc Deslauriers Description: libnss3 - Network Security Service libraries libnss3-dbg - Debugging symbols for the Network Security Service libraries libnss3-dev - Development files for the Network Security Service libraries libnss3-tools - Network Security Service tools Changes: nss (2:3.35-2ubuntu2.3) bionic-security; urgency=medium . * SECURITY UPDATE: OOB read when importing a curve25519 private key - debian/patches/CVE-2019-11719.patch: don't unnecessarily strip leading 0's from key material during PKCS11 import in nss/lib/freebl/ecl/ecp_25519.c, nss/lib/pk11wrap/pk11akey.c, nss/lib/pk11wrap/pk11cert.c, nss/lib/pk11wrap/pk11pk12.c, nss/lib/softoken/legacydb/lgattr.c, nss/lib/softoken/pkcs11c.c. - CVE-2019-11719 * SECURITY UPDATE: segfault via empty or malformed p256-ECDH public keys - debian/patches/CVE-2019-11729-1.patch: more thorough input checking in nss/lib/cryptohi/seckey.c, nss/lib/freebl/dh.c, nss/lib/freebl/ec.c, nss/lib/util/quickder.c. - debian/patches/CVE-2019-11729-2.patch: ignore spki decode failures on negative tests in nss/gtests/pk11_gtest/pk11_curve25519_unittest.cc. - CVE-2019-11729 Checksums-Sha1: 07af5ab442b899384b3ab326202fb6b59c706cda 9651812 libnss3-dbg_3.35-2ubuntu2.3_s390x.deb f6aca865dec541d13c75b27291e9cdde7cc62b8a 226280 libnss3-dev_3.35-2ubuntu2.3_s390x.deb 369cf5e8b53bed2676182bb46905360e6089a219 803992 libnss3-tools_3.35-2ubuntu2.3_s390x.deb 61666fb0fbbdc14342ad8283a399b45ca0bed16a 1032016 libnss3_3.35-2ubuntu2.3_s390x.deb d00fbc63e8e53c02107f6f6fd6c7866da281594f 5999 nss_3.35-2ubuntu2.3_s390x.buildinfo Checksums-Sha256: 941c2131b287acb13f1b20875d05d930389db090f480bea92685240b0729e8fa 9651812 libnss3-dbg_3.35-2ubuntu2.3_s390x.deb 8191e5d658ee1100c325e1c0311509affae7d108ade1e5a4bdb178ce10be5998 226280 libnss3-dev_3.35-2ubuntu2.3_s390x.deb ed23a93b2fab258485a8d8fede79071e54a9e876770246ff6cbeccce9fc73eda 803992 libnss3-tools_3.35-2ubuntu2.3_s390x.deb 9aadfd73c72914bbeefd32f289a2d4e05a12f33290effc2852a55a9921a878a8 1032016 libnss3_3.35-2ubuntu2.3_s390x.deb 7e74258ce6550c2272d3e64f9183bdb04cb99ee497f70b75f312ccba55bc9950 5999 nss_3.35-2ubuntu2.3_s390x.buildinfo Files: 139a5fe5fba2cf5fc872e55f5518f7d8 9651812 debug extra libnss3-dbg_3.35-2ubuntu2.3_s390x.deb acb9ad036e4c6c4e1994ae2b181a87bf 226280 libdevel optional libnss3-dev_3.35-2ubuntu2.3_s390x.deb abcc2d68b74ab1745f2f4952237bc045 803992 admin optional libnss3-tools_3.35-2ubuntu2.3_s390x.deb 840024c7d47db3bffee2f7cf3608fa55 1032016 libs optional libnss3_3.35-2ubuntu2.3_s390x.deb 6116951c2f1d50ec428b49996ed50637 5999 libs optional nss_3.35-2ubuntu2.3_s390x.buildinfo Original-Maintainer: Maintainers of Mozilla-related packages