Oval Definition:oval:com.redhat.rhsa:def:20211384
Revision Date:2021-04-27Version:637
Title:RHSA-2021:1384: nss security and bug fix update (Moderate)
Description:Network Security Services (NSS) is a set of libraries designed to support the cross-platform development of security-enabled client and server applications.

Security Fix(es):

  • nss: TLS 1.3 CCS flood remote DoS Attack (CVE-2020-25648)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

    Bug Fix(es):

  • FTBFS: Paypal Cert expired (BZ#1883973)

  • FTBFS: IKE CLASS_1563 fails gtest (BZ#1884793)

  • Cannot compile code with nss headers and -Werror=strict-prototypes (BZ#1885321)

  • CA HSM ncipher token disabled after RHEL-7.9 update (BZ#1932193)
    • Family:unixClass:patch
    Status:Reference(s):CVE-2020-25648
    RHSA-2021:1384
    Platform(s):Red Hat Enterprise Linux 7
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 7 is installed
  • AND
  • nss is earlier than 0:3.53.1-7.el7_9
  • AND nss is signed with Red Hat redhatrelease2 key
  • nss-devel is earlier than 0:3.53.1-7.el7_9
  • AND nss-devel is signed with Red Hat redhatrelease2 key
  • nss-pkcs11-devel is earlier than 0:3.53.1-7.el7_9
  • AND nss-pkcs11-devel is signed with Red Hat redhatrelease2 key
  • nss-sysinit is earlier than 0:3.53.1-7.el7_9
  • AND nss-sysinit is signed with Red Hat redhatrelease2 key
  • nss-tools is earlier than 0:3.53.1-7.el7_9
  • AND nss-tools is signed with Red Hat redhatrelease2 key
    • BACK