Ubuntu
nss package

Change logs for nss source package in Maverick

  1. Maverick (10.10)
  2. Change log 
  • nss (3.12.9+ckbi-1.82-0ubuntu0.10.10.3) maverick-security; urgency=low

  * SECURITY UPDATE: Add patch from Debian version 3.12.11-3 rebased against
    3.12.9 to remove the DigiNotar certificates and actively distrust them;
    Thanks to Mike Hommey from Debian for the original patch (LP: #837557)
    - mozilla/security/nss/lib/ckfw/builtins/certdata.*:
      Explicitely distrust various DigiNotar CAs:
      - DigiNotar Root CA
      - DigiNotar Services 1024 CA
      - DigiNotar Cyber CA
      - DigiNotar Cyber CA 2nd
      - DigiNotar PKIoverheid
      - DigiNotar PKIoverheid G2
    - mozilla/security/nss/lib/ckfw/builtins/certdata.*:
      Remove DigiNotar Root CA.
 -- Micah Gersten <email address hidden>   Wed, 07 Sep 2011 14:55:24 -0500
  • nss (3.12.9+ckbi-1.82-0ubuntu0.10.10.1) maverick-security; urgency=low

  * New upstream release v3.12.9 with updated ckbi module
    (NSS_3_12_9_WITH_CKBI_1_82_RTM)
    - SECURITY UPDATE: Update "builtin certificates" module (ckbi) to
      explicitly mark the recently issued and revoked fraudulent certificates
      as explicitly not trusted; NSS will report SEC_ERROR_UNTRUSTED_CERT when
      attempting to verify one of these fraudulent certificates (LP: #741729)
  * Add new symbols
    - update debian/libnss3-1d.symbols
 -- Micah Gersten <email address hidden>   Tue, 29 Mar 2011 03:13:10 -0500
  • nss (3.12.8-0ubuntu0.10.10.1) maverick-security; urgency=low

  * New upstream release v3.12.8 (NSS_3_12_8_RTM)
    - Fix browser wildcard certificate validation issue
    - Update root certs
    - Fix SSL deadlocks
  * Refresh patches:
    - update debian/patches/38_kbsd.patch
    - update debian/patches/97_SSL_RENEGOTIATE_TRANSITIONAL.patch
 -- Chris Coulson <email address hidden>   Mon, 04 Oct 2010 22:29:19 +0100
  • nss (3.12.7-0ubuntu1) maverick; urgency=low

  * New upstream release v3.12.7 (NSS_3_12_7_RTM)
  * Fix some lintian warnings
    - update debian/rules
    - update debian/control
    - udpate debian/copyright
    - update debian/libnss3-1d.postinst
    - update debian/libnss3-1d.postrm
    - update debian/libnss3-1d.preinst
    - update debian/libnss3-1d.prerm
  * Bump minimum nspr version to 4.8.6
    - update debian/control
  * Add new API to symbols file
    - update debian/libnss3-1d.symbols
 -- Chris Coulson <email address hidden>   Wed, 25 Aug 2010 16:37:04 +0100
  • nss (3.12.6-0ubuntu3) lucid; urgency=low

  * Generate missing checksum for libnssdbm3.so to make FIPS mode
    work again (LP: #559881)
    - update debian/rules
 -- Chris Coulson <email address hidden>   Sat, 10 Apr 2010 21:23:03 +0100