| Name: | nss |
|---|---|
| Version: | 3.53.1 |
| Release: | 17.el8_3 |
| Architecture: | aarch64 |
| Group: | Unspecified |
| Size: | 1963311 |
| License: | MPLv2.0 |
| RPM: | nss-3.53.1-17.el8_3.aarch64.rpm |
| Source RPM: | nss-3.53.1-17.el8_3.src.rpm |
| Build Date: | Tue Feb 16 2021 |
| Build Host: | ca-buildarm05 |
| Vendor: | Oracle America |
| URL: | http://www.mozilla.org/projects/security/pki/nss/ |
| Summary: | Network Security Services |
| Description: | Network Security Services (NSS) is a set of libraries designed to support cross-platform development of security-enabled client and server applications. Applications built with NSS can support SSL v2 and v3, TLS, PKCS #5, PKCS #7, PKCS #11, PKCS #12, S/MIME, X.509 v3 certificates, and other security standards. |
- Fix various corner cases with ike v1 app b support.
- Fix the following CVE - CVE-2020-12403 chacha-poly issues - CVE-2020-12400 constant time ECC. - CVE-2020-6829 constant time ECC.
- Revert some policy changes the generate ABI runtime issues.
- Add support for enable/disable in policy. Now if your policy file has disallow=x enable=y it will act just like our other libraries.
- Add OAEP interface so applications can wrap keys with RSA-OAEP rather than RSA-PKCS-1.
- fips need to reject small primes even if they are approved - code to autodetect whether or not to use the cache needs to do so in a way that doesn't mess with filesystem negative file caching. - add kdf selftests
- Fix issue with upgradedb where upgradedb expects standard to generate dbm databases, not sql databases (default in RHEL8)
- Disable dh timing test because it's unreliable on s390
- Explicitly enable upgradedb/sharedb test cycles
- Disable Delegated Credentials for TLS