nspr-4.32.0-1.el8, nss-3.67.0-6.el8

エラータID: AXSA:2021-2445:02

Release date: 
Monday, September 27, 2021 - 03:40
Subject: 
nspr-4.32.0-1.el8, nss-3.67.0-6.el8
Affected Channels: 
Asianux Server 8 for x86_64
Severity: 
Moderate
Description: 

Network Security Services (NSS) is a set of libraries designed to support the cross-platform development of security-enabled client and server applications.

Netscape Portable Runtime (NSPR) provides platform independence for non-GUI operating system facilities.

The following packages have been upgraded to a later upstream version: nss (3.67.0), nspr (4.32.0).

Security Fix(es):

* nss: TLS 1.3 CCS flood remote DoS Attack (CVE-2020-25648)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

* 8025 error code when creating subCAs
* NSS cannot use SQL databases created by specific versions of NSS
* Inconsistent handling of malformed CertificateRequest messages

Enhancement(s):

* [IBM 8.5 FEAT] [P10] POWER10 performance enhancements for cryptography: NSS FreeBL

CVE-2020-25648
A flaw was found in the way NSS handled CCS (ChangeCipherSpec) messages in TLS 1.3. This flaw allows a remote attacker to send multiple CCS messages, causing a denial of service for servers compiled with the NSS library. The highest threat from this vulnerability is to system availability. This flaw affects NSS versions before 3.58.

Solution: 

Update packages.

Additional Info: 

N/A

Download: 

SRPMS
  1. nspr-4.32.0-1.el8.src.rpm
    MD5: 6c35c422743044c3c96383128a809045
    SHA-256: 3f27bc72d80f270483236d1feff4095f69755375f83e9dd12e5ade5f12aa79c9
    Size: 1.05 MB
  2. nss-3.67.0-6.el8.src.rpm
    MD5: 45de47b7614b1f0500037e0cbb97d63b
    SHA-256: a985b9391f18bf47d54b6fcc2436b661d38a9368e0a606eddcc44503107cd965
    Size: 78.65 MB

Asianux Server 8 for x86_64
  1. nspr-4.32.0-1.el8.x86_64.rpm
    MD5: b26a2b70ee9b6f1e07c9828aa6bb45ba
    SHA-256: a7dd599af7651bf090f6206f36bf7bfc8cad27d722bef099fc479bb5f294b288
    Size: 141.41 kB
  2. nspr-devel-4.32.0-1.el8.x86_64.rpm
    MD5: 36fcff9ab9a3edb98d714167629c07af
    SHA-256: 08f5c410ceaeb874ecb5cd992fff2f2c3bddd05ed688cf4796c80d9333ed333e
    Size: 119.62 kB
  3. nss-3.67.0-6.el8.x86_64.rpm
    MD5: 1dac67ae3c386d17ad346b11d1f2ad5a
    SHA-256: 6642da2f54d28897bde4e6c124bd4b622768a33703aed72661f04ba1d5391355
    Size: 739.54 kB
  4. nss-devel-3.67.0-6.el8.x86_64.rpm
    MD5: 5dc18e434df5c99092829ed0bee0ae74
    SHA-256: 543f9c786a62c1cd1cbcce5795cd4da611aca578b5a3a3220352c7d1c36c3883
    Size: 273.09 kB
  5. nss-softokn-3.67.0-6.el8.x86_64.rpm
    MD5: c8e20412e604aa05d55fdbbd9ac85d61
    SHA-256: a303e78d37c2c156be978f08907f4aa6f4441031b83d286d8645417ab16eab06
    Size: 485.72 kB
  6. nss-softokn-devel-3.67.0-6.el8.x86_64.rpm
    MD5: aa9bd2dfb5d11f9237b96081d8ba3ee5
    SHA-256: 9e41177d755acd5ab392a03652a75e09edc588439621a607aece97d766c0cfa8
    Size: 67.16 kB
  7. nss-softokn-freebl-3.67.0-6.el8.x86_64.rpm
    MD5: b9313e59f09a2541cb98e0b65c653afb
    SHA-256: 591c4d65a5f45d20a7f1f7bc4f5c6ab34e1e420374c0d395fe920214510aeb36
    Size: 394.11 kB
  8. nss-softokn-freebl-devel-3.67.0-6.el8.x86_64.rpm
    MD5: a81d26ac7e71a2a146ee9d395c111978
    SHA-256: e52d55e7efdfa7f146ad1692a56d53bfe41a71a8db3d687fc0dd0df87e778290
    Size: 111.59 kB
  9. nss-sysinit-3.67.0-6.el8.x86_64.rpm
    MD5: 09e05ad94e0348593af51c09b50292e5
    SHA-256: 0a37b2a53631da8f26fa64529b834bb7ea99a5a3e820e9adb8d34c35490d528a
    Size: 72.03 kB
  10. nss-tools-3.67.0-6.el8.x86_64.rpm
    MD5: e0558898aba0a2b15eb634383bcf2a6a
    SHA-256: 95e964c53a00b2a7f09d1a01827163b2b99ed126bcbcf1304facad7b5a8f06f1
    Size: 574.70 kB
  11. nss-util-3.67.0-6.el8.x86_64.rpm
    MD5: 92cd146ba470d3b4466dfd706241fd85
    SHA-256: c38d4d0ce44afa2b96d71d0e4de08fb07aca6b0aa3bef0f6f505eee515b05e84
    Size: 135.96 kB
  12. nss-util-devel-3.67.0-6.el8.x86_64.rpm
    MD5: 8a4b5c9706642deb8867126342e10897
    SHA-256: 6e3325c2d7e8981465ceae32f4f74c64f041147af5f1040e977860a76622f49a
    Size: 130.97 kB
  13. nspr-4.32.0-1.el8.i686.rpm
    MD5: ff68950022f5e9032bd8043f508584e6
    SHA-256: ae371a10fc7679f8d28dceccdefc8692b35d038257f080af4a6a1129c5bb4b16
    Size: 151.57 kB
  14. nspr-devel-4.32.0-1.el8.i686.rpm
    MD5: 56a6c13bb8a14a78ecf23ffb2634c130
    SHA-256: 0e1dbb784c26a1b1a661225b60e7f1b70f163c467ec76892042e4ea8342dee60
    Size: 119.66 kB
  15. nss-3.67.0-6.el8.i686.rpm
    MD5: 29b9565ba4ccf029ce6355604d927b5a
    SHA-256: f4a72bdf0702a4c9a2f781c521e7203162813d9a6eb95de22808a4ff6b176d21
    Size: 817.04 kB
  16. nss-devel-3.67.0-6.el8.i686.rpm
    MD5: 6b1919bf6c8869c547a7468ffca5f258
    SHA-256: e16ad4c4ebd1c466509afa9b0eb12c89bcf01d2d11014acbaae2bae4e49c380a
    Size: 276.69 kB
  17. nss-softokn-3.67.0-6.el8.i686.rpm
    MD5: b452144aa2c654668ef61cca359f2855
    SHA-256: a6d01718921f92a5f10693de08b7a61c2b72a3713e2b38aa05d3383eb2946277
    Size: 521.04 kB
  18. nss-softokn-devel-3.67.0-6.el8.i686.rpm
    MD5: c14c0243e7d0236ef2f12be1299a730d
    SHA-256: fe691d1221881f984f8c66ee86af20ac502cb6e9cffd8112438b25ff34cf3ad1
    Size: 67.19 kB
  19. nss-softokn-freebl-3.67.0-6.el8.i686.rpm
    MD5: dec14a6f551b84fa1bc1fcf44c4abacd
    SHA-256: d55ee45d147d6c87d4d4cf698190cc2e2fcaa1fc85a6e9ddd1b1ac2699727c1c
    Size: 382.46 kB
  20. nss-softokn-freebl-devel-3.67.0-6.el8.i686.rpm
    MD5: 0ce73683dd55d758a19c1058324af2df
    SHA-256: ddbec9991ecccfbe57f4e40b0b45898e28323757f44997836eacefbb4b0867b5
    Size: 110.89 kB
  21. nss-util-3.67.0-6.el8.i686.rpm
    MD5: 4daed220710aab63a9e075009b2cf0f3
    SHA-256: d98b84646c1dc1df4ecd485595ad7bce795200056259f4a24a1ee7a669f47ff8
    Size: 138.47 kB
  22. nss-util-devel-3.67.0-6.el8.i686.rpm
    MD5: 45ffe874a066d4670b626604a82fe2cd
    SHA-256: 5761f91df6fa168272eff8bbee301c830b5bebe92452fde78277353bcd7b35b8
    Size: 131.01 kB