SUSE CVE-2015-3276

The nssparseciphers function in libraries/libldap/tlsm.c in OpenLDAP does not properly parse OpenSSL-style multi-keyword mode cipher strings, which might cause a weaker than intended cipher to be used and allow remote attackers to have unspecified impact via unknown vectors...

mod_nss security, bug fix, and enhancement update

1.0.14-7 - Add the permission patch to the repository 1312583 1.0.14-6 - Check the NSS certificate database directory for read permissions by the Apache user. 1312583 1.0.14-5 - Update clean semaphore patch to not free the pinList twice. 1364560 1.0.14-4 - Update clean semaphore patch to not clos...

SUSE-SU-2016:2396-1 Security update for apache2-mod_nss

This update provides apache2-modnss 1.0.14, which brings several fixes and enhancements: - Fix OpenSSL ciphers stopped parsing at +. CVE-2016-3099 - Created valgrind suppression files to ease debugging. - Implement SSLPPTYPEFILTER to call executables to get the key password pins. - Improvements t...

AZL-6770 CVE-2015-3276 affecting package openldap for versions less than 2.4.57-5

The nssparseciphers function in libraries/libldap/tlsm.c in OpenLDAP does not properly parse OpenSSL-style multi-keyword mode cipher strings, which might cause a weaker than intended cipher to be used and allow remote attackers to have unspecified impact via unknown vectors...