Oval Definition:oval:com.redhat.rhsa:def:20141073
Revision Date:2014-08-18Version:643
Title:RHSA-2014:1073: nss, nss-util, nss-softokn security, bug fix, and enhancement update (Low)
Description:Network Security Services (NSS) is a set of libraries designed to support the cross-platform development of security-enabled client and server applications. Applications built with NSS can support SSLv3, TLS, and other security standards.

  • It was found that the implementation of Internationalizing Domain Names in Applications (IDNA) hostname matching in NSS did not follow the RFC 6125 recommendations. This could lead to certain invalid certificates with international characters to be accepted as valid. (CVE-2014-1492)

  • In addition, the nss, nss-util, and nss-softokn packages have been upgraded to upstream version 3.16.2, which provides a number of bug fixes and enhancements over the previous versions. (BZ#1124659)

    Users of NSS are advised to upgrade to these updated packages, which correct these issues and add these enhancements. After installing this update, applications using NSS must be restarted for this update to take effect.
  • Family:unixClass:patch
    Status:Reference(s):CVE-2014-1492
    CVE-2014-1492
    RHSA-2014:1073
    RHSA-2014:1073-00
    RHSA-2014:1073-01
    Platform(s):Red Hat Enterprise Linux 7
    Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 7 is installed
  • AND
  • nss-util is earlier than 0:3.16.2-1.el7_0
  • AND nss-util is signed with Red Hat redhatrelease2 key
  • nss-util-devel is earlier than 0:3.16.2-1.el7_0
  • AND nss-util-devel is signed with Red Hat redhatrelease2 key
  • nss-softokn is earlier than 0:3.16.2-1.el7_0
  • AND nss-softokn is signed with Red Hat redhatrelease2 key
  • nss-softokn-devel is earlier than 0:3.16.2-1.el7_0
  • AND nss-softokn-devel is signed with Red Hat redhatrelease2 key
  • nss-softokn-freebl is earlier than 0:3.16.2-1.el7_0
  • AND nss-softokn-freebl is signed with Red Hat redhatrelease2 key
  • nss-softokn-freebl-devel is earlier than 0:3.16.2-1.el7_0
  • AND nss-softokn-freebl-devel is signed with Red Hat redhatrelease2 key
  • nss is earlier than 0:3.16.2-2.el7_0
  • AND nss is signed with Red Hat redhatrelease2 key
  • nss-devel is earlier than 0:3.16.2-2.el7_0
  • AND nss-devel is signed with Red Hat redhatrelease2 key
  • nss-pkcs11-devel is earlier than 0:3.16.2-2.el7_0
  • AND nss-pkcs11-devel is signed with Red Hat redhatrelease2 key
  • nss-sysinit is earlier than 0:3.16.2-2.el7_0
  • AND nss-sysinit is signed with Red Hat redhatrelease2 key
  • nss-tools is earlier than 0:3.16.2-2.el7_0
  • AND nss-tools is signed with Red Hat redhatrelease2 key
  • BACK