mod_nss-1.0.8-19.AXS4
エラータID: AXSA:2014-001:01
Release date:
Friday, February 28, 2014 - 15:21
Subject:
mod_nss-1.0.8-19.AXS4
Affected Channels:
Asianux Server 4 for x86
Asianux Server 4 for x86_64
Severity:
High
Description:
The mod_nss module provides strong cryptography for the Apache Web server via the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols using the Network Security Services (NSS) security library.
Security issues fixed with this release:
CVE-2013-4566
mod_nss 1.0.8 and earlier, when NSSVerifyClient is set to none for the server/vhost context, does not enforce the NSSVerifyClient setting in the directory context, which allows remote attackers to bypass intended access restrictions.
Solution:
Update packages.
CVEs:
CVE-2013-4566
mod_nss 1.0.8 and earlier, when NSSVerifyClient is set to none for the server/vhost context, does not enforce the NSSVerifyClient setting in the directory context, which allows remote attackers to bypass intended access restrictions.
mod_nss 1.0.8 and earlier, when NSSVerifyClient is set to none for the server/vhost context, does not enforce the NSSVerifyClient setting in the directory context, which allows remote attackers to bypass intended access restrictions.
Additional Info:
N/A
Download:
SRPMS
- mod_nss-1.0.8-19.AXS4.src.rpm
MD5: 19ae642a92bc575e7e9f5db88eda6550
SHA-256: 061ceb6ce1c9db3e5c3d96a29dae81b526c8a8e49832d6be26e1db873eb0f140
Size: 428.26 kB
Asianux Server 4 for x86
- mod_nss-1.0.8-19.AXS4.i686.rpm
MD5: 43f1e04f9564b0eaa4d61468b2e307de
SHA-256: 0912c8120818ee3828eb0ec3dcd4b1ebd7d0044ddbf0abcffa37c74c1cf78864
Size: 84.99 kB
Asianux Server 4 for x86_64
- mod_nss-1.0.8-19.AXS4.x86_64.rpm
MD5: b13cab2b8f0b81d9b1f7dc1d812ce39a
SHA-256: b6a70556730d2af750b36d1e1446d3c9f31f25d0e1b7d48f1e6b46e6f1bfaa47
Size: 84.25 kB
日本語