| Name: | nspr |
|---|---|
| Version: | 4.35.0 |
| Release: | 4.el9_3 |
| Architecture: | aarch64 |
| Group: | Unspecified |
| Size: | 426864 |
| License: | MPLv2.0 |
| RPM: | nspr-4.35.0-4.el9_3.aarch64.rpm |
| Source RPM: | nss-3.90.0-4.el9_3.src.rpm |
| Build Date: | Wed Jan 10 2024 |
| Build Host: | build-ol9-aarch64.oracle.com |
| Vendor: | Oracle America |
| URL: | http://www.mozilla.org/projects/nspr/ |
| Summary: | Netscape Portable Runtime |
| Description: | NSPR provides platform independence for non-GUI operating system facilities. These facilities include threads, thread synchronization, normal file and network I/O, interval timing and calendar time, basic memory management (malloc and free) and shared library linking. |
- CVE-2023-5388
nss: timing attack against RSA decryption.
Make the final blinding multmod constant time.
- add indicator for pbkdf - fix ems policy bug
- fix release number
- fix missing dist tag in packages version - move from deprecate %patch format
- Rebase to NSS-3.90 - Rebase to NSPR-3.35 - fix incorrect version values in the NSS spec file for FIPS
- fix memory leak, add generator test in FIPS mode.
- fix consistency return errors. We shouldn't lock the FIPS token if the application asked for invalid DH parameters on on keygen.
- Add check for RSA PSS Salt required by FIPS - Update fips_algorithms.sh according to the review.
- Fix CVE-2023-0767
- Update fips_algorithms.h to match the final FIPS requirements - Disable delegated credentials