Branches for Quantal

Name Status Last Modified Last Commit
lp:ubuntu/quantal/nss 2 Mature 2012-08-16 10:57:28 UTC 2012-08-16
39. * SECURITY UPDATE: denial of service ...

Author: Marc Deslauriers
Revision Date: 2012-08-16 10:57:28 UTC

* SECURITY UPDATE: denial of service in QuickDER decoder
  - debian/patches/CVE-2012-0441.patch: properly handle zero-length basic
    constraints and zero-length fields in
    nss/mozilla/security/nss/lib/softoken/legacydb/keydb.c,
    nss/mozilla/security/nss/lib/softoken/legacydb/lgcreate.c,
    nss/mozilla/security/nss/lib/softoken/legacydb/lowkey.c,
    nss/mozilla/security/nss/lib/softoken/legacydb/lowkeyti.h,
    nss/mozilla/security/nss/lib/util/quickder.c.
  - CVE-2012-0441

lp:ubuntu/quantal-security/nss bug 2 Mature 2014-01-22 15:16:14 UTC 2014-01-22
44. * SECURITY UPDATE: MITM attack via TL...

Author: Marc Deslauriers
Revision Date: 2014-01-22 15:16:14 UTC

* SECURITY UPDATE: MITM attack via TLS False Start
  - CVE-2013-1740
* Adjusted packaging for new upstream release 3.15.4:
  - debian/patches/*: refreshed.
  - debian/libnss3.symbols: added new symbols.

lp:ubuntu/quantal-updates/nss bug 2 Mature 2014-04-02 18:10:03 UTC 2014-04-02
45. * SECURITY UPDATE: incorrect IDNA wil...

Author: Marc Deslauriers
Revision Date: 2014-04-02 10:21:09 UTC

* SECURITY UPDATE: incorrect IDNA wildcard handling
  - debian/patches/CVE-2014-1492.patch: conform to RFC 6125 in
    nss/lib/certdb/certdb.c.
  - CVE-2014-1492
* No longer ship cacert.org certificates. (LP: #1258286)
  - removed debian/patches/95_add_spi+cacert_ca_certs.patch
  - added debian/patches/95_add_spi_certs.patch

lp:ubuntu/quantal-proposed/nss 1 Development 2012-08-16 17:45:15 UTC 2012-08-16
39. * SECURITY UPDATE: denial of service ...

Author: Marc Deslauriers
Revision Date: 2012-08-16 10:57:28 UTC

* SECURITY UPDATE: denial of service in QuickDER decoder
  - debian/patches/CVE-2012-0441.patch: properly handle zero-length basic
    constraints and zero-length fields in
    nss/mozilla/security/nss/lib/softoken/legacydb/keydb.c,
    nss/mozilla/security/nss/lib/softoken/legacydb/lgcreate.c,
    nss/mozilla/security/nss/lib/softoken/legacydb/lowkey.c,
    nss/mozilla/security/nss/lib/softoken/legacydb/lowkeyti.h,
    nss/mozilla/security/nss/lib/util/quickder.c.
  - CVE-2012-0441

14 of 4 results