-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Fri, 23 Dec 2016 10:02:10 +0100 Source: nss Binary: libnss3 libnss3-1d libnss3-tools libnss3-dev libnss3-dbg Architecture: source amd64 Version: 2:3.26-1+debu7u2 Distribution: wheezy-security Urgency: high Maintainer: Maintainers of Mozilla-related packages <pkg-mozilla-maintainers@lists.alioth.debian.org> Changed-By: Raphaël Hertzog <hertzog@debian.org> Description: libnss3 - Network Security Service libraries libnss3-1d - Network Security Service libraries - transitional package libnss3-dbg - Debugging symbols for the Network Security Service libraries libnss3-dev - Development files for the Network Security Service libraries libnss3-tools - Network Security Service tools Changes: nss (2:3.26-1+debu7u2) wheezy-security; urgency=high . [ Antoine Beaupré ] * Non-maintainer upload by the LTS Security Team. * New upstream release to fix CVE-2016-9074 * CVE-2016-9074: existing mitigation of timing side-channel attacks insufficient * also includes a fix for aborted client connexions with MD5 algorithm selection * Remove weird debian/changelog.n file from previous upload * Add debian/patches/customize-gcc.patch to allow override of CC and CCC variables in build system. . [ Raphaël Hertzog ] * Run upstream test suite (cf #806639). * Add autopkgtest (cf #806207). * Force use of gcc-4.7 and g++-4.7 to fix FTBFS on arm*. * Update nss/tests/libpkix/certs/PayPal*.cert to work-around the fact that the former certificates have expired. Also update the expected OID through debian/patches/replace_expired_paypal_cert.patch. * Repackage the new upstream release as debian/patches/nss-3.26.2.patch on top of nss-3.26 to avoid having a version higher than in jessie. Checksums-Sha1: e81630d1c5d09268aa7a146f9cb2fb8599df1b89 1919 nss_3.26-1+debu7u2.dsc 4e685f8ca15ccae181ffd1c8a8129c2364232872 36949 nss_3.26-1+debu7u2.debian.tar.gz df6f9709f7fd5b317c0e8263f01b42b8a2e2ab5c 1134988 libnss3_3.26-1+debu7u2_amd64.deb bc301a194c8fbd2201b878747054589157978b7f 18878 libnss3-1d_3.26-1+debu7u2_amd64.deb d00a633a8860cdbce6753bc31e22e9a195a0a0e2 783384 libnss3-tools_3.26-1+debu7u2_amd64.deb f053ea747fc3a9d3c4dccd38acbe897dbb7ee311 231522 libnss3-dev_3.26-1+debu7u2_amd64.deb 7cfc55aea42c3df283031319b6516770b5bc44cf 8965944 libnss3-dbg_3.26-1+debu7u2_amd64.deb Checksums-Sha256: 81b6a52730c8a3447a63fcc616d012a927a05bb068eb60f36f49b4c4dc2f0053 1919 nss_3.26-1+debu7u2.dsc ad8c98352a5015b6fd4cc5f1ed020335808e28d2a4808e3ee2ded1154766c613 36949 nss_3.26-1+debu7u2.debian.tar.gz e88c5150070c85bb72e45777be5865e1022f7c34ed84f8c3cbd863d0d1139a16 1134988 libnss3_3.26-1+debu7u2_amd64.deb 4acaf83e529f451d4a5f97d54f1c0b5854e033012d38befe32bdb89de8481a55 18878 libnss3-1d_3.26-1+debu7u2_amd64.deb deee35c7ba3033b60594fb505ee217347daecc73c3708dfedca6d527a5ee6482 783384 libnss3-tools_3.26-1+debu7u2_amd64.deb 4db48a9eae7b7006edd8ab4cd9c85f519740aca8cfdada2a931731513453aec9 231522 libnss3-dev_3.26-1+debu7u2_amd64.deb 10758aa8628b0c8ce77862efcbcc7f0efe915e441ba696746c90d0038f00b827 8965944 libnss3-dbg_3.26-1+debu7u2_amd64.deb Files: f6b648ad446276eff0f525cc6ac1ccaf 1919 libs optional nss_3.26-1+debu7u2.dsc 50b9d373df423b14ea284ed95550b503 36949 libs optional nss_3.26-1+debu7u2.debian.tar.gz ed8ca5c8de954726afb2dc7206ec5a0d 1134988 libs optional libnss3_3.26-1+debu7u2_amd64.deb 765fc0781572ff7c7684ec13c12f54b6 18878 oldlibs extra libnss3-1d_3.26-1+debu7u2_amd64.deb 7938349b23bd3fcc48442ff757426600 783384 admin optional libnss3-tools_3.26-1+debu7u2_amd64.deb 9ec793ffb2e30a16e56aef04ebe0ff61 231522 libdevel optional libnss3-dev_3.26-1+debu7u2_amd64.deb 04cd9512041237a35deccd82c498cc99 8965944 debug extra libnss3-dbg_3.26-1+debu7u2_amd64.deb -----BEGIN PGP SIGNATURE----- Comment: Signed by Raphael Hertzog iQEzBAEBCgAdFiEE1823g1EQnhJ1LsbSA4gdq+vCmrkFAlhc9IkACgkQA4gdq+vC mrmYQAf+OHmZSM12jPeB2GLEQXjlrCd7kUJNLKcTlH9isUjGF2tzHiFECSgcFRFY Lc7pdvZKhRvLPkpHSsIZ9s2Bk0MJ8aP5DqFqfXGQ/LoNhwJLED17Eek2syEqmeSs SGRrt43jTRwP8TT4aS+2Ycj6UCheMVHU835q9aqZc0H4D5sk8lrSxveGI/VZSO4E vRI5TXsc1FWiAQIYodMPH4lDLJhPSAhOwbVzxMdGrJZopDyHi9S1wS5BPUvWEAV+ oxV7cq+nMTe3CDJuV7Rc2bUMum4pX5kYGr3J90NVzaRfd+GOM73YiB9XIlTjyYnT LcHLmdK//tTx4We+MmIgHhQgrGhwxA== =PZOM -----END PGP SIGNATURE-----