Oval Definition:oval:com.redhat.rhsa:def:20160007
Revision Date:2016-01-07Version:639
Title:RHSA-2016:0007: nss security update (Moderate)
Description:Network Security Services (NSS) is a set of libraries designed to support the cross-platform development of security-enabled client and server applications.

  • A flaw was found in the way TLS 1.2 could use the MD5 hash function for signing ServerKeyExchange and Client Authentication packets during a TLS handshake. A man-in-the-middle attacker able to force a TLS connection to use the MD5 hash function could use this flaw to conduct collision attacks to impersonate a TLS server or an authenticated TLS client. (CVE-2015-7575)

    All nss users are advised to upgrade to these updated packages, which contain a backported patch to correct this issue. For the update to take effect, all services linked to the NSS library must be restarted, or the system rebooted.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2015-7575
    RHSA-2016:0007
    RHSA-2016:0007-00
    RHSA-2016:0007-01
    Platform(s):Red Hat Enterprise Linux 6
    Red Hat Enterprise Linux 7
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 6 is installed
  • AND
  • nss is earlier than 0:3.19.1-8.el6_7
  • AND nss is signed with Red Hat redhatrelease2 key
  • nss-devel is earlier than 0:3.19.1-8.el6_7
  • AND nss-devel is signed with Red Hat redhatrelease2 key
  • nss-pkcs11-devel is earlier than 0:3.19.1-8.el6_7
  • AND nss-pkcs11-devel is signed with Red Hat redhatrelease2 key
  • nss-sysinit is earlier than 0:3.19.1-8.el6_7
  • AND nss-sysinit is signed with Red Hat redhatrelease2 key
  • nss-tools is earlier than 0:3.19.1-8.el6_7
  • AND nss-tools is signed with Red Hat redhatrelease2 key
  • OR Package Information
  • Red Hat Enterprise Linux 7 is installed
  • AND
  • nss is earlier than 0:3.19.1-19.el7_2
  • AND nss is signed with Red Hat redhatrelease2 key
  • nss-devel is earlier than 0:3.19.1-19.el7_2
  • AND nss-devel is signed with Red Hat redhatrelease2 key
  • nss-pkcs11-devel is earlier than 0:3.19.1-19.el7_2
  • AND nss-pkcs11-devel is signed with Red Hat redhatrelease2 key
  • nss-sysinit is earlier than 0:3.19.1-19.el7_2
  • AND nss-sysinit is signed with Red Hat redhatrelease2 key
  • nss-tools is earlier than 0:3.19.1-19.el7_2
  • AND nss-tools is signed with Red Hat redhatrelease2 key
    • Definition Synopsis
  • Release Information
  • Red Hat Enterprise Linux 6 Client is installed
  • OR Red Hat Enterprise Linux 6 Server is installed
  • OR Red Hat Enterprise Linux 6 Workstation is installed
  • OR Red Hat Enterprise Linux 6 ComputeNode is installed
  • AND
  • nss is earlier than 0:3.19.1-8.el6_7
  • AND nss is signed with Red Hat redhatrelease2 key
  • nss-devel is earlier than 0:3.19.1-8.el6_7
  • AND nss-devel is signed with Red Hat redhatrelease2 key
  • nss-pkcs11-devel is earlier than 0:3.19.1-8.el6_7
  • AND nss-pkcs11-devel is signed with Red Hat redhatrelease2 key
  • nss-sysinit is earlier than 0:3.19.1-8.el6_7
  • AND nss-sysinit is signed with Red Hat redhatrelease2 key
  • nss-tools is earlier than 0:3.19.1-8.el6_7
  • AND nss-tools is signed with Red Hat redhatrelease2 key
  • OR Package Information
  • Red Hat Enterprise Linux 7 Client is installed
  • OR Red Hat Enterprise Linux 7 Server is installed
  • OR Red Hat Enterprise Linux 7 Workstation is installed
  • OR Red Hat Enterprise Linux 7 ComputeNode is installed
  • AND
  • nss is earlier than 0:3.19.1-19.el7_2
  • AND nss is signed with Red Hat redhatrelease2 key
  • nss-devel is earlier than 0:3.19.1-19.el7_2
  • AND nss-devel is signed with Red Hat redhatrelease2 key
  • nss-pkcs11-devel is earlier than 0:3.19.1-19.el7_2
  • AND nss-pkcs11-devel is signed with Red Hat redhatrelease2 key
  • nss-sysinit is earlier than 0:3.19.1-19.el7_2
  • AND nss-sysinit is signed with Red Hat redhatrelease2 key
  • nss-tools is earlier than 0:3.19.1-19.el7_2
  • AND nss-tools is signed with Red Hat redhatrelease2 key
    • BACK