Описание
Security update for mozilla-nss
This update for mozilla-nss to version 3.36.6 fixes the following issues:
Security issues fixed:
- CVE-2018-12384: NSS responded to an SSLv2-compatible ClientHello with a ServerHello that had an all-zero random (bmo#1483128, boo#1106873)
- CVE-2018-12404: Cache side-channel variant of the Bleichenbacher attack (bmo#1485864, boo#1119069)
Список пакетов
openSUSE Leap 42.3
libfreebl3-3.36.6-54.1
libfreebl3-32bit-3.36.6-54.1
libsoftokn3-3.36.6-54.1
libsoftokn3-32bit-3.36.6-54.1
mozilla-nss-3.36.6-54.1
mozilla-nss-32bit-3.36.6-54.1
mozilla-nss-certs-3.36.6-54.1
mozilla-nss-certs-32bit-3.36.6-54.1
mozilla-nss-devel-3.36.6-54.1
mozilla-nss-sysinit-3.36.6-54.1
mozilla-nss-sysinit-32bit-3.36.6-54.1
mozilla-nss-tools-3.36.6-54.1
Ссылки
- E-Mail link for openSUSE-SU-2018:4117-1
- SUSE Security Ratings
Описание
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
Затронутые продукты
openSUSE Leap 42.3:libfreebl3-3.36.6-54.1
openSUSE Leap 42.3:libfreebl3-32bit-3.36.6-54.1
openSUSE Leap 42.3:libsoftokn3-3.36.6-54.1
openSUSE Leap 42.3:libsoftokn3-32bit-3.36.6-54.1
Ссылки
- CVE-2018-12384
- SUSE Bug 1106873
- SUSE Bug 1119105
- SUSE Bug 1121207
Описание
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
Затронутые продукты
openSUSE Leap 42.3:libfreebl3-3.36.6-54.1
openSUSE Leap 42.3:libfreebl3-32bit-3.36.6-54.1
openSUSE Leap 42.3:libsoftokn3-3.36.6-54.1
openSUSE Leap 42.3:libsoftokn3-32bit-3.36.6-54.1
Ссылки
- CVE-2018-12404
- SUSE Bug 1119069
- SUSE Bug 1119105
- SUSE Bug 1121207