[ubuntu/precise-security] nss 3.14.1-0ckbi1.93ubuntu.0.12.04.1 (Accepted)

[Jamie Strandboge]

nss (3.14.1-0ckbi1.93ubuntu.0.12.04.1) precise-security; urgency=low

  * New upstream release. Dropped the following patches:
    - debian/patches/90_realpath.patch (included upstream)
    - debian/patches/91_build_pwdecrypt.patch (included upstream)
    - debian/patches/96_NSS_VersionCheck.patch (included upstream)
    - debian/patches/98_fix_header_error.patch (included upstream)
    - debian/patches/protect-against-calls-before-nss_init.patch (included
      upstream)
    - debian/patches/CVE-2012-0441.patch (included upstream)
  * debian/patches/38_hurd.patch: refresh
  * debian/patches/38_kbsd.patch: refresh/update based on Debian
  * debian/patches/80_security_tools.patch: refresh
  * debian/patches/85_security_load.patch: refresh
  * debian/patches/95_add_spi+cacert_ca_certs.patch: updated
  * debian/patches/97_SSL_RENEGOTIATE_TRANSITIONAL.patch: refresh
  * debian/patches/lower-dhe-priority.patch: refresh/update based on Debian
  * SECURITY UPDATE: distrust improperly issued TURKTRUST intermediate CAs
    - debian/patches/94_ckbi-1.9.patch: update to CKBI 1.93 by using
      mozilla/security/nss/lib/ckfw/builtins/certdata.txt from upstream and
      updating mozilla/security/nss/lib/ckfw/builtins/nssckbi.h. Apply this
      before 95_add_spi+cacert_ca_certs.patch since it keeps this patch clean
      and underscores that SPI and CACERT are not part of upstream Roots.
    - CVE-2013-0743
  * debian/libnss3.symbols: add NSS_3.13.2, NSS_3.14, NSS_3.14.1, and
    NSSUTIL_3.14 symbols

Date: 2013-01-11 20:20:12.701552+00:00
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
https://launchpad.net/ubuntu/precise/+source/nss/3.14.1-0ckbi1.93ubuntu.0.12.04.1
-------------- next part --------------
Sorry, changesfile not available.