Overview

File _patchinfo of Package patchinfo.6286

<patchinfo incident="6286">
  <issue id="998176" tracker="bnc">obsolete option 'NSSSessionCacheTimeout' for mod_nss.conf</issue>
  <issue id="863035" tracker="bnc">apache2-mod_nss: add ciphers with 256 bit key and SHA256 or SHA384 as PRF</issue>
  <issue id="993642" tracker="bnc">apache2-mod_nss fails test suite with new mozilla-nss</issue>
  <issue id="998180" tracker="bnc">/usr/sbin/gencert creates NSS database with wrong permissions</issue>
  <issue id="998183" tracker="bnc">NSS Database does not get generated in a case where it should</issue>
  <issue id="996282" tracker="bnc">/etc/apache2/conf.d/mod_nss.conf contains wrong directories</issue>
  <category>recommended</category>
  <rating>low</rating>
  <packager>vitezslav_cizek</packager>
  <description>
This update for apache2-mod_nss provides the following fixes:

- bump up minimal NSS version to 3.25, because 3.24 breaks mod_nss because of SSLv2 changes (bsc#993642)
- rebuild against the recently updated NSS (3.29) adds support for SHA384 TLS ciphers (bsc#863035)
- remove deprecated NSSSessionCacheTimeout option from mod_nss.conf.in (bsc#998176)
- change ownership of the gencert generated NSS database so apache can read it (bsc#998180)
- use correct configuration path in mod_nss.conf.in (bsc#996282)
- remove %post migration code from the old alias directory
- generate dummy certificates if there aren't any in mod_nss.d (bsc#998183)
</description>
  <summary>Recommended update for apache2-mod_nss</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places