-
Mon Nov 12 2018 Bob Relyea <rrelyea@redhat.com> - 3.36.0-7.1
- Update the cert verify code to allow a new ipsec usage and follow RFC 4945
-
Wed Aug 29 2018 Daiki Ueno <dueno@redhat.com> - 3.36.0-7
- Backport upstream fix for CVE-2018-12384
- Remove nss-lockcert-api-change.patch, which turned out to be a
mistake (the symbol was not exported from libnss)
-
Thu Apr 19 2018 Daiki Ueno <dueno@redhat.com> - 3.36.0-6
- Exercise SSL tests which only run under non-FIPS setting
-
Wed Apr 18 2018 Daiki Ueno <dueno@redhat.com> - 3.36.0-5
- Restore CERT_LockCertTrust and CERT_UnlockCertTrust back in cert.h
-
Fri Apr 13 2018 Daiki Ueno <dueno@redhat.com> - 3.36.0-4
- Work around modutil -changepw error if the old and new passwords are
both empty in FIPS mode
-
Tue Mar 27 2018 Daiki Ueno <dueno@redhat.com> - 3.36.0-3
- Decrease the iteration count of PKCS#12 for compatibility with Windows
- Fix deadlock when a token is re-inserted while a client process is running
-
Mon Mar 12 2018 Daiki Ueno <dueno@redhat.com> - 3.36.0-2
- Set NSS_FORCE_FIPS=1 in %build
- Revert the changes to tests assuming the default DB type
-
Fri Mar 09 2018 Daiki Ueno <dueno@redhat.com> - 3.36.0-1
- Rebase to NSS 3.36
-
Mon Jan 15 2018 Daiki Ueno <dueno@redhat.com> - 3.34.0-4
- Re-enable nss-is-token-present-race.patch
-
Fri Jan 05 2018 Daiki Ueno <dueno@redhat.com> - 3.34.0-3
- Temporarily disable nss-is-token-present-race.patch