Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debianDebianDEBIAN:BSA-057:E012E
HistoryNov 15, 2011 - 7:23 a.m.

[BSA-057] Security update for nss

2011-11-1507:23:14
lists.debian.org
9
JSON

This update to the NSS cryptographic libraries revokes the trust in the
"DigiCert Sdn. Bhd" certificate authority. More information can be found
in the Mozilla Security Blog:
http://blog.mozilla.com/security/2011/11/03/revoking-trust-in-digicert-sdn-bhd-intermediate-certificate-authority/

This update also fixes an insecure load path for pkcs11.txt configuration
file (CVE-2011-3640).

For the oldstable distribution (lenny), this problem has been fixed in
version 3.12.3.1-0lenny7.

For the lenny-backports distribution the problems have been fixed in
version 3.12.8-1+squeeze4~bpo50+1.

For the stable distribution (squeeze), this problem has been fixed in
version 3.12.8-1+squeeze4.

For the squeeze-backports distribution the problems have been fixed in
version 3.13.1.with.ckbi.1.88-1~bpo60+1.

For the unstable distribution (sid), this problem has been fixed in
version 3.13.1.with.ckbi.1.88-1.

Upgrade instructions

If you don't use pinning (see [1]) you have to update the package
manually via "apt-get -t lenny-backports install <packagelist>" with
the packagelist of your installed packages affected by this update.
[1] <http://backports.debian.org/Instructions&gt;

We recommend to pin (in /etc/apt/preferences) the backports repository
to 200 so that new versions of installed backports will be installed
automatically.

Package: *
Pin: release a=lenny-backports
Pin-Priority: 200
Attachment:
signature.asc
Description: Digital signature

OSVersionArchitecturePackageVersionFilename
Debian999kfreebsd-i386libnss3-1d-dbg< 3.13.1.with.ckbi.1.88-1+b1libnss3-1d-dbg_3.13.1.with.ckbi.1.88-1+b1_kfreebsd-i386.deb
Debian999hurd-i386libnss3-1d< 3.13.1.with.ckbi.1.88-1+b1libnss3-1d_3.13.1.with.ckbi.1.88-1+b1_hurd-i386.deb
Debian5alphalibnss3-dev< 3.12.3.1-0lenny7libnss3-dev_3.12.3.1-0lenny7_alpha.deb
Debian6i386libnss3-dev< 3.12.8-1+squeeze4libnss3-dev_3.12.8-1+squeeze4_i386.deb
Debian999powerpclibnss3-dev< 3.13.1.with.ckbi.1.88-1+b1libnss3-dev_3.13.1.with.ckbi.1.88-1+b1_powerpc.deb
Debian6armellibnss3-1d< 3.12.8-1+squeeze4libnss3-1d_3.12.8-1+squeeze4_armel.deb
Debian5armellibnss3-1d-dbg< 3.12.3.1-0lenny7libnss3-1d-dbg_3.12.3.1-0lenny7_armel.deb
Debian6sparclibnss3-1d-dbg< 3.12.8-1+squeeze4libnss3-1d-dbg_3.12.8-1+squeeze4_sparc.deb
Debian6powerpclibnss3-dev< 3.12.8-1+squeeze4libnss3-dev_3.12.8-1+squeeze4_powerpc.deb
Debian5ia64libnss3-1d-dbg< 3.12.3.1-0lenny7libnss3-1d-dbg_3.12.3.1-0lenny7_ia64.deb
Rows per page:
1-10 of 1671

Related

debian 1
openvas 9
nessus 9
osv 1
cve 1
ubuntucve 1
prion 1
debiancve 1
suse 1
gentoo 1
debian
debian
[SECURITY] [DSA 2339-1] nss security update
2011-11-07 17:45:35
openvas
openvas
Google Chrome Mozilla Network Security Services Privilege Escalation Vulnerability - Windows
2011-11-03 00:00:00
Debian Security Advisory DSA 2339-1 (nss)
2012-02-11 00:00:00
Google Chrome Mozilla Network Security Services Privilege Escalation Vulnerability (Mac OS X)
2011-11-03 00:00:00
nessus
nessus
Debian DSA-2339-1 : nss - several vulnerabilities
2011-11-08 00:00:00
openSUSE Security Update : libfreebl3 (openSUSE-SU-2011:1241-1)
2014-06-13 00:00:00
openSUSE Security Update : libfreebl3 (openSUSE-SU-2011:1241-1)
2014-06-13 00:00:00
osv
osv
nss - several
2011-11-07 00:00:00
cve
cve
CVE-2011-3640
2011-10-28 02:49:00
ubuntucve
ubuntucve
CVE-2011-3640
2011-10-28 00:00:00
prion
prion
Design/Logic Flaw
2011-10-28 02:49:00
debiancve
debiancve
CVE-2011-3640
2011-10-28 02:49:00
suse
suse
Seamonkey update (critical)
2011-12-01 15:08:20
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-01-08 00:00:00
JSON
Related for DEBIAN:BSA-057:E012E
debian1openvas9nessus9osv1cve1ubuntucve1prion1debiancve1suse1gentoo1