-
nss (3.12.8-0ubuntu0.9.04.1) jaunty-security; urgency=low
* New upstream release v3.12.8 (NSS_3_12_8_RTM)
- Fix browser wildcard certificate validation issue
- Update root certs
- Fix SSL deadlocks
* Refresh patches:
- update debian/patches/38_kbsd.patch
- update debian/patches/97_SSL_RENEGOTIATE_TRANSITIONAL.patch
* Bump minimum nspr version to 4.8.6
- update debian/control
* Add new API to symbols file
- update debian/libnss3-1d.symbols
-- Chris Coulson <email address hidden> Mon, 04 Oct 2010 23:31:36 +0100
-
nss (3.12.6-0ubuntu0.9.04.1) jaunty-security; urgency=low
* New upstream release 3.12.6 RTM (NSS_3_12_6_RTM)
- fixes CVE-2009-3555 aka US-CERT VU#120541
* Adjust patches to changed upstream code base
- update debian/patches/38_kbsd.patch
- update debian/patches/38_mips64_build.patch
- update debian/patches/85_security_load.patch
* Remove patches that are merged upstream
- delete debian/patches/91_nonexec_stack.patch
- update debian/patches/series
* Bump nspr dependency to 4.8
- update debian/control
* Add new symbols for 3.12.6
- update debian/libnss3-1d.symbols
* Enable transitional scheme for SSL renegotiation
- add 97_SSL_RENEGOTIATE_TRANSITIONAL.patch
- update debian/patches/series
* Generate missing checksum for libnssdbm3.so to make FIPS mode
work correctly
- update debian/rules
-- Chris Coulson <email address hidden> Tue, 18 May 2010 15:19:06 +0100
-
nss (3.12.3.1-0ubuntu0.9.04.2) jaunty-security; urgency=low
* Add 91_nonexec_stack.patch: fix regression in stack memory
protectons caused by unmarked assembly (LP: #409864).
-- Kees Cook <email address hidden> Mon, 24 Aug 2009 15:03:19 -0700
-
nss (3.12.3.1-0ubuntu0.9.04.1) jaunty-security; urgency=low
* new upstream release 3.12.3.1 RTM (NSS_3_12_3_1_RTM) (LP: #407549)
- see USN-810-1
* adjust patches to changed upstream code base
- update debian/patches/38_kbsd.patch
* needs nspr >= 4.7.4
- update debian/control
* update 85_security_load.patch to latest debian version
- update debian/patches/85_security_load.patch
* add new symbols for 3.12.3
- update debian/libnss3-1d.symbols
* LP: #388350 - nss 3.12.3-0ubuntu2 ftbfs in karmic - shlibsign crashes; we add
debian/libnss3-1d/usr/lib/nss to LD_LIBRARY_PATH for the shlibsign invocation
used to sign libs in debian/rules
- update debian/rules
* append LD_LIBRARY_PATH to shlibsign invocation to make fakeroot builds happy
- update debian/rules
-- Alexander Sack <email address hidden> Wed, 29 Jul 2009 22:38:28 +0200
-
nss (3.12.2~rc1-0ubuntu2) jaunty; urgency=low
* LP: #316452 - ldconfig breaks/removes legacy links for
previously versioned library names during upgrade; the fix
prevents ldconfig from treating the transitional/backup files
as "libs" by using a prefix ("XNOLDCONFIG_")
- debian/libnspr4-0d.postinst
- debian/libnspr4-0d.postrm
- debian/libnspr4-0d.preinst
- debian/libnspr4-0d.prerm
-- Alexander Sack <email address hidden> Wed, 14 Jan 2009 13:27:07 +0100
-
nss (3.12.2~rc1-0ubuntu1) jaunty; urgency=low
* New upstream snapshot: 3.12.2 RC1
[ Fabien Tassin <email address hidden> ]
* Remove patch applied upstream:
- drop debian/patches/80_security_tools.patch
- update debian/patches/series
* Update diverged patches:
- update debian/patches/38_kbsd.patch
- update debian/patches/38_mips64_build.patch
* Add new symbols to symbols file
- update debian/libnss3-1d.symbols
[ Alexander Sack <email address hidden> ]
* disable soname patch to become binary compatible with upstream
- update debian/patches/series
* flip links: libnss3.so <- libnss3.so.1d (before: libnss3.so ->
libnss3.so.1d); same link flipping was done for all other previously
soname patched libs: libnssutil3.so, libsmime3.so.1d, libssl3.so.1d
- update debian/libnss3-1d.links
- update debian/libnss3-1d.symbols
* properly transition links in preinst and postrm; also cover abort-
cases in the other maintainer scripts
- add debian/libnss3-1d.postinst
- add debian/libnss3-1d.postrm
- add debian/libnss3-1d.preinst
- add debian/libnss3-1d.prerm
* remove hack from debian/rules that debian uses to recreate
libsoftokn3.so with a versioned SONAME
- update debian/rules
* install the unversioned .so binaries
- update debian/rules
* only install the 4 main libraries into /usr/lib; all the others
go to pkglibdir
- update debian/rules
* higher bar for libnspr4 Build-Depend to >= 4.7.3~, which is
the version where the soname droppage is going to happen
- update debian/control
* explitily pass libraries to be used for dpkg-gensymbols run of
dh_makeshlibs
- update debian/rules
* fix lintian complain about no-shlibs-control-file
- update debian/rules
-- Alexander Sack <email address hidden> Sun, 11 Jan 2009 15:06:17 +0100
-
nss (3.12.0.3-0ubuntu5) intrepid; urgency=low
* fix LP: #232392 - "Ubuntu builds of libnss lack ECC support";
Thanks to Kain for pointing this out.
- update debian/rules
-- Alexander Sack <email address hidden> Tue, 12 Aug 2008 17:40:59 +0200
