[ubuntu/jammy-security] nss 2:3.98-0ubuntu0.22.04.1 (Accepted)
Marc Deslauriers
marc.deslauriers at canonical.com
Wed Apr 10 13:30:26 UTC 2024
nss (2:3.98-0ubuntu0.22.04.1) jammy-security; urgency=medium
* Updated to upstream 3.98 to fix security issues and get a new CA
certificate bundle.
- CVE-2023-5388: timing issue in RSA operations
- CVE-2023-6135: side-channel in multiple NSS NIST curves
* Removed patches included in new version:
- debian/patches/set-tls1.2-as-minimum.patch
- debian/patches/CVE-2022-34480.patch
- debian/patches/CVE-2023-0767.patch
* Updated patches for new version:
- debian/patches/38_hppa.patch
- debian/patches/85_security_load.patch
- debian/patches/disable_fips_enabled_read.patch
- debian/patches/fix-ftbfs-s390x.patch
* debian/control: bump libnspr version to 2:4.34.
* debian/libnss3.symbols: added new symbols.
Date: 2024-03-25 14:13:23.106781+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/nss/2:3.98-0ubuntu0.22.04.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the jammy-changes
mailing list