kpriv/pkgsrc
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Update to 3.19.2

Browse source 
* Approved by wiz@.

Changelog:
Network Security Services (NSS) is a patch release for NSS 3.19.

No new functionality is introduced in this release. This release addresses
a backwards compatibility issue with the NSS 3.19.1 release.

Notable Changes:
* In NSS 3.19.1, the minimum key sizes that the freebl cryptographic
implementation (part of the softoken cryptographic module used by default
by NSS) was willing to generate or use was increased - for RSA keys, to
512 bits, and for DH keys, 1023 bits. This was done as part of a security
fix for Bug 1138554 / CVE-2015-4000. Applications that requested or
attempted to use keys smaller then the minimum size would fail. However,
this change in behaviour unintentionally broke existing NSS applications
that need to generate or use such keys, via APIs such as
SECKEY_CreateRSAPrivateKey or SECKEY_CreateDHPrivateKey.

In NSS 3.19.2, this change in freebl behaviour has been reverted. The fix
for Bug 1138554 has been moved to libssl, and will now only affect the
minimum keystrengths used in SSL/TLS.
This commit is contained in:
ryoon 2015-06-23 13:16:47 +00:00
parent cfcee78428
commit 147d8bb3be
2 changed files with 6 additions and 7 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
devel/nss/Makefile
View file

@ -1,8 +1,7 @@
# $NetBSD: Makefile,v 1.98 2015/06/12 10:48:52 wiz Exp $
# $NetBSD: Makefile,v 1.99 2015/06/23 13:16:47 ryoon Exp $
DISTNAME= nss-${NSS_RELEASE:S/.0$//}
NSS_RELEASE= 3.19.1
PKGREVISION= 1
NSS_RELEASE= 3.19.2
CATEGORIES= security
MASTER_SITES= ${MASTER_SITE_MOZILLA_ALL:=security/nss/releases/NSS_${NSS_RELEASE:S/.0$//:S/./_/g}_RTM/src/}

8
devel/nss/distinfo
View file

@ -1,8 +1,8 @@
$NetBSD: distinfo,v 1.48 2015/05/29 14:19:25 ryoon Exp $
$NetBSD: distinfo,v 1.49 2015/06/23 13:16:47 ryoon Exp $
SHA1 (nss-3.19.1.tar.gz) = 9e20dee2137265e61ce8a70daaf44fe0315fdb81
RMD160 (nss-3.19.1.tar.gz) = aeef3cd93419dcc9e50c9fa648c6ac113ca4547d
Size (nss-3.19.1.tar.gz) = 6953537 bytes
SHA1 (nss-3.19.2.tar.gz) = 1f04052688b23e7d2c2ce05ee25fd29d180d4a43
RMD160 (nss-3.19.2.tar.gz) = d32ca88b7e0ecbfa43f273b351ddb037a67c7013
Size (nss-3.19.2.tar.gz) = 6953657 bytes
SHA1 (patch-am) = ee4c4beeb120397852fc4b06b7dd54534d0d5ac5
SHA1 (patch-an) = 4ab22f2a575676b5b640bc9a760b83eb05c75e69
SHA1 (patch-md) = 0a09fd2abb8674a2d301f1b6a5331af5db94178f