Overview

File _patchinfo of Package patchinfo.463

<patchinfo incident="463">
  <issue id="927402" tracker="bnc">apache2 mod_nss: segfault libnssutil3.so(SECITEM_FreeItem_Util+0x21) free(): invalid next size</issue>
  <issue id="928039" tracker="bnc">apache2_mod_nss: default SSL host not working</issue>
  <issue id="902068" tracker="bnc">apache2 mod_nss logs TLSv1.2 as UNKNOWN</issue>
  <issue id="930922" tracker="bnc">Issue using mod_nss with hostnames of certain lengths</issue>
  <issue id="933265" tracker="bnc">apache2 mod_nss: segfault if certificate store is not readable</issue>
  <issue id="897712" tracker="bnc">Random "Bad Request" after update of apache2-mod_nss to version 1.0.8-0.4.9.1</issue>
  <issue id="930186" tracker="bnc">mod_nss SNI selection segfaults host</issue>
  <issue id="933832" tracker="bnc">send TLS server name extension on proxy connections</issue>
  <category>recommended</category>
  <rating>moderate</rating>
  <packager>vitezslav_cizek</packager>
  <description>
apache2-mod_nss was updated to fix various bugs.

The apache2 mod_nss module was updated to fix various bugs.

* The default cipher list in the config template was updated and some
  less secure ciphers removed.  (bsc#928039)
* Various improvements and bugfixes to Server Name Indication (SNI)
  support were done, fixing bugs on machines with multiple vhosts and similar.
  (bnc#927402, bsc#927402, bsc#928039, bsc#930922, bsc#930186, bnc#897712)
* Added an alert about incorrect permissions on the certificate database (bsc#933265)
* Adding small fixes for support of TLS v1.2 [bnc#902068]
* send TLS server name extension on proxy connections [bsc#933832]
</description>
  <summary>Recommended update for apache2-mod_nss</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places