| Revision Date: | 2020-06-18 | Version: | 1 |
| Title: | (Important) |
| Description: |
This update for mozilla-nspr, mozilla-nss fixes the following issues:
mozilla-nss was updated to version 3.53
- CVE-2020-12399: Fixed a timing attack on DSA signature generation (bsc#1171978). - CVE-2019-17006: Added length checks for cryptographic primitives (bsc#1159819). Release notes: https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.53_release_notes
mozilla-nspr to version 4.25
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1121032
1159819
1169746
1171978
CVE-2015-9275
CVE-2019-17006
CVE-2020-12399
openSUSE-SU-2020:0103-1
|
| Platform(s): | Image SLES15-SP3-Manager-4-2-Server-BYOS-EC2-HVM
SUSE Linux Enterprise High Performance Computing 15 SP1
SUSE Linux Enterprise Server 15 SP1
SUSE Linux Enterprise Server for SAP Applications 15 SP1
SUSE Linux Enterprise Storage 6
SUSE Manager Proxy 4.0
SUSE Manager Server 4.0
SUSE Package Hub for SUSE Linux Enterprise 15 SP1
| Product(s): | |
| Definition Synopsis |
| SUSE Package Hub for SUSE Linux Enterprise 15 SP1 is installed AND arc-5.21q-bp151.4.3.1 is installed
|
| Definition Synopsis |
| Image SLES15-SP3-Manager-4-2-Server-BYOS-EC2-HVM is installed
AND Package Information
libfreebl3-3.53-3.40.1 is installed
OR libsoftokn3-3.53-3.40.1 is installed
OR mozilla-nspr-4.25-3.12.1 is installed
OR mozilla-nss-3.53-3.40.1 is installed
OR mozilla-nss-certs-3.53-3.40.1 is installed
|