[SECURITY] Fedora 20 Update: nss-3.15.3-2.fc20

updates at fedoraproject.org updates at fedoraproject.org
Sat Dec 14 02:52:25 UTC 2013

Fedora Update Notification
2013-12-05 00:23:10

Name        : nss
Product     : Fedora 20
Version     : 3.15.3
Release     : 2.fc20
URL         : http://www.mozilla.org/projects/security/pki/nss/
Summary     : Network Security Services
Description :
Network Security Services (NSS) is a set of libraries designed to
support cross-platform development of security-enabled client and
server applications. Applications built with NSS can support SSL v2
and v3, TLS, PKCS #5, PKCS #7, PKCS #11, PKCS #12, S/MIME, X.509
v3 certificates, and other security standards.

Update Information:

This update rebases the nss, nss-util, and nss-softokn packages to nss-3.15.3 and nspr to nspr-4.10.2 in order to address security-relevant bugs have been resolved in NSS 3.15.3.

For further details please refer to the upstream release notes at


Included are some fixes to the manpages.

For best results you should upgrade all packages at once including any devel packages.


* Tue Dec  3 2013 Elio Maldonado <emaldona at redhat.com> - 3.15.3-2
- Install symlink to setup-nsssysinit.sh, without suffix, to match manpage
* Sun Nov 24 2013 Elio Maldonado <emaldona at redhat.com> - 3.15.3-1
- Update to NSS_3_15_3_RTM
- Resolves: Bug 1031897 - CVE-2013-5605 CVE-2013-5606 CVE-2013-1741 nss: various flaws
- Fix option descriptions for setup-nsssysinit manpage
- Fix man page of nss-sysinit wrong path and other flaws
- Document email option for certutil manpage
- Remove unused patches

  [ 1 ] Bug #1030807 - CVE-2013-5605 nss: Null_Cipher() does not respect maxOutputLen  (MFSA 2013-103)
  [ 2 ] Bug #1031458 - CVE-2013-1741 nss: Integer truncation in certificate parsing (MFSA 2013-103)

This update can be installed with the "yum" update program.  Use 
su -c 'yum update nss' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at

More information about the package-announce mailing list