mozilla-nss security update
This mozilla update fixes the following security issues:
- explicitely distrust DigiCert Sdn. Bhd (bnc#728520,
bmo#698753)
- make sure NSS_NoDB_Init does not try to use wrong
certificate databases (CVE-2011-3640, bnc#726096,
bmo#641052)
-
Submitted by
Adrian Schröter (adrianSuSE)
- Version 5398
Fixed bugs
bnc#728520
Firefox 8 / 3.6.24 and other mozilla apps
bnc#726096
VUL-0: mozilla-nss: Did honour /pkcs11.txt and /secmod.db files by initialization
CVE#CVE-2011-3640
** DISPUTED ** Untrusted search path vulnerability in Mozilla Network Security Services (NSS), as used in Google Chrome before 17 on Windows and Mac OS X, might allow local users to gain privileges via a Trojan horse pkcs11.txt file in a top-level directo
