Fedora 17 Update: nss-softokn-3.14-5.fc17

Wed Dec 12 04:34:09 UTC 2012

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2012-19006
2012-11-26 01:29:07
--------------------------------------------------------------------------------

Name        : nss-softokn
Product     : Fedora 17
Version     : 3.14
Release     : 5.fc17
URL         : http://www.mozilla.org/projects/security/pki/nss/
Summary     : Network Security Services Softoken Module
Description :
Network Security Services Softoken Cryptographic Module

--------------------------------------------------------------------------------
Update Information:

Update to nss-3.14.

The release notes are at https://developer.mozilla.org/en-US/docs/NSS/NSS_3.14_release_notes

Please update the entire set at once to prevent conflicts.

As part of the nss-3.14 upstream work some headers moved to their rightful places. 

This change had the effect in fedora, where nss is split into mutiple packages, of some headers moving from one devel rpm to another.

Those file ownership "swaps" could result in updates conflicts if one updates the packages separately. 

For example, trying to install nss-util-devel resulted in an install conflict with nss-softokn-devel. 

Two other headers moved from nss-softokn-devel to nss-devel changing package owners. 

Testing shows that such conflicts do not occur when updating the full set as a whole.

--------------------------------------------------------------------------------
ChangeLog:

* Mon Nov 19 2012 Elio Maldonado <emaldona at redhat.com> - 3.14-5
- Update to NSS_3_14_RTM
- Restore and update patch for Bug 829088 for code changes in nss-3.14
- Update the license to MPLv2.0
- Add export LD_LIBRARY_PATH=$RPM_BUILD_ROOT//usr/lib64 to the signing commands
- Ensures in-tree libraries are the ones the shlibsign tools dynamically links to
- Now we digest and sign with SHA256 and before we used SHA1 and verification would fail
- This is a temporary fix while the buildroot is being bootstrapped
- Can be removed in the next build
* Fri Oct 26 2012 Elio Maldonado <emaldona at redhat.com> - 3.13.6-2
- Bootstrapping build prior to upcoming update of nss packages to nss-3.14
- Don't install sechasht.h as nss-util-devel will install when updated to 3.14
- Prevent update conflict between nss-util-devel-3.14 and nss-softokn-devel-3.13.6
* Fri Oct  5 2012 Kai Engert <kaie at redhat.com> - 3.13.6-1
- Update to NSS_3_13_6_RTM
* Sun Jul  1 2012 Elio Maldonado <emaldona at redhat.com> - 3.13.5-1
- Update to NSS_3_13_5_RTM
- Remove unneeded fix for gcc 4.7 c++ issue in secmodt.h which undoes the upstream fix
* Wed Jun 13 2012 Elio Maldonado <emaldona at redhat.com> - 3.13.4-3
- Resolves: rhbz#745224 - nss-softokn sha224 self-test fails in fips mode
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #806588 - Disable SSL PKCS #11 bypass at build time
        https://bugzilla.redhat.com/show_bug.cgi?id=806588
  [ 2 ] Bug #871882 - missing header: sechash.h in nss 3.14
        https://bugzilla.redhat.com/show_bug.cgi?id=871882
  [ 3 ] Bug #872124 - nss 3.14 breaks fedpkg new-sources
        https://bugzilla.redhat.com/show_bug.cgi?id=872124
  [ 4 ] Bug #870864 - Add support in NSS for Secure Boot
        https://bugzilla.redhat.com/show_bug.cgi?id=870864
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update nss-softokn' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------