Network Security Services
Network Security Services (NSS) is a set of libraries designed to
support cross-platform development of security-enabled server
applications. Applications built with NSS can support SSL v2 and v3,
TLS, PKCS #5, PKCS #7, PKCS #11, PKCS #12, S/MIME, X.509 v3
certificates, and other security standards.
- Developed at mozilla:Factory
- Sources inherited from project openSUSE:Factory
-
8
derived packages
- Download package
-
Checkout Package
osc -A https://api.opensuse.org checkout openSUSE:Backports:SLE-15-SP4:SLECandidates/mozilla-nss && cd $_ - Create Badge
Refresh
Refresh
Source Files
| Filename | Size | Changed |
|---|---|---|
| add-relro-linker-option.patch | 0000000433 433 Bytes | |
| baselibs.conf | 0000000426 426 Bytes | |
| bmo-1400603.patch | 0000012934 12.6 KB | |
| cert9.db | 0000009216 9 KB | |
| key4.db | 0000011264 11 KB | |
| malloc.patch | 0000000300 300 Bytes | |
| mozilla-nss-rpmlintrc | 0000000187 187 Bytes | |
| mozilla-nss.changes | 0000109987 107 KB | |
| mozilla-nss.spec | 0000013754 13.4 KB | |
| nss-3.45.tar.gz | 0076017462 72.5 MB | |
| nss-config.in | 0000002408 2.35 KB | |
| nss-no-rpath.patch | 0000001040 1.02 KB | |
| nss-opt.patch | 0000000739 739 Bytes | |
| nss-sqlitename.patch | 0000000891 891 Bytes | |
| nss.pc.in | 0000000250 250 Bytes | |
| pkcs11.txt | 0000000450 450 Bytes | |
| setup-nsssysinit.sh | 0000001255 1.23 KB | |
| system-nspr.patch | 0000000793 793 Bytes |
Revision 146 (latest revision is 217)
Dominique Leuenberger (dimstar_suse)
accepted
request 720828
from
Wolfgang Rosenauer (wrosenauer)
(revision 146)
- update to NSS 3.45 (bsc#1141322)
* required by Firefox 69.0
New functions
* PK11_FindRawCertsWithSubject - Finds all certificates on the
given slot with the given subject distinguished name and returns
them as DER bytes. If no such certificates can be found, returns
SECSuccess and sets *results to NULL. If a failure is encountered
while fetching any of the matching certificates, SECFailure is
returned and *results will be NULL.
Notable changes
* bmo#1540403 - Implement Delegated Credentials
* bmo#1550579 - Replace ARM32 Curve25519 implementation with one
from fiat-crypto
* bmo#1551129 - Support static linking on Windows
* bmo#1552262 - Expose a function PK11_FindRawCertsWithSubject for
finding certificates with a given subject on a given slot
* bmo#1546229 - Add IPSEC IKE support to softoken
* bmo#1554616 - Add support for the Elbrus lcc compiler (<=1.23)
* bmo#1543874 - Expose an external clock for SSL
* bmo#1546477 - Various changes in response to the ongoing FIPS review
Certificate Authority Changes
* The following CA certificates were Removed:
bmo#1552374 - CN = Certinomis - Root CA
Bugs fixed
* bmo#1540541 - Don't unnecessarily strip leading 0's from key material
during PKCS11 import (CVE-2019-11719)
* bmo#1515342 - More thorough input checking (CVE-2019-11729)
* bmo#1552208 - Prohibit use of RSASSA-PKCS1-v1_5 algorithms in
TLS 1.3 (CVE-2019-11727)
* bmo#1227090 - Fix a potential divide-by-zero in makePfromQandSeed
Comments 0