nss - Debian Package Tracker

general

source: nss (main)
version: 2:3.63-1
maintainer: Maintainers of Mozilla-related packages (DMD)
uploaders: Mike Hommey [DMD]
arch: any
std-ver: 4.1.4
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

oldstable: 2:3.26.2-1.1+deb9u1
old-sec: 2:3.26.2-1.1+deb9u2
stable: 2:3.42.1-1+deb10u3
stable-sec: 2:3.42.1-1+deb10u3
testing: 2:3.61-1
unstable: 2:3.63-1

versioned links

2:3.26.2-1.1+deb9u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2:3.26.2-1.1+deb9u2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2:3.42.1-1+deb10u3: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2:3.61-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2:3.63-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

libnss3 (9 bugs: 0, 9, 0, 0)
libnss3-dev (5 bugs: 0, 2, 3, 0)
libnss3-tools (1 bugs: 0, 1, 0, 0)

action needed

Multiarch hinter reports 1 issue(s) high

There are issues with the multiarch metadata for this package.

libnss3-dev conflicts on /usr/bin/nss-config on any two of amd64, arm64, armel, armhf, and 5 more

Created: 2016-09-14 Last update: 2021-04-20 13:06

A new upstream version is available: 3.64 high

A new upstream version 3.64 is available, you should consider packaging it.

Created: 2021-04-17 Last update: 2021-04-20 13:05

1 security issue in sid high

There is 1 open security issue in sid.

1 important issue:

CVE-2020-12413:

Created: 2021-02-19 Last update: 2021-03-24 11:36

1 security issue in bullseye high

There is 1 open security issue in bullseye.

1 important issue:

CVE-2020-12413:

Created: 2021-02-19 Last update: 2021-03-24 11:36

The package has not entered testing even though the delay is over normal

The package has not entered testing even though the 20-day delay is over. Check why.

Created: 2021-04-13 Last update: 2021-04-20 16:04

10 bugs tagged patch in the BTS normal

The BTS contains patches fixing 10 bugs, consider including or untagging them.

Created: 2020-10-19 Last update: 2021-04-20 16:02

Fails to build during reproducibility testing normal

A package building reproducibly enables third parties to verify that the source matches the distributed binaries. It has been identified that this source package produced different results, failed to build or had other issues in a test environment. Please read about how to improve the situation!

Created: 2018-09-11 Last update: 2021-04-20 14:39

6 low-priority security issues in buster low

There are 6 open security issues in buster.

6 issues left for the package maintainer to handle:

CVE-2020-12400: (needs triaging) When converting coordinates from projective to affine, the modular inversion was not performed in constant time, resulting in a possible timing-based side channel attack. This vulnerability affects Firefox < 80 and Firefox for Android < 80.
CVE-2020-12401: (needs triaging) During ECDSA signature generation, padding applied in the nonce designed to ensure constant-time scalar multiplication was removed, resulting in variable-time execution dependent on secret data. This vulnerability affects Firefox < 80 and Firefox for Android < 80.
CVE-2020-12403: (needs triaging)
CVE-2020-12413: (needs triaging)
CVE-2020-25648: (needs triaging) A flaw was found in the way NSS handled CCS (ChangeCipherSpec) messages in TLS 1.3. This flaw allows a remote attacker to send multiple CCS messages, causing a denial of service for servers compiled with the NSS library. The highest threat from this vulnerability is to system availability. This flaw affects NSS versions before 3.58.
CVE-2020-6829: (needs triaging) When performing EC scalar point multiplication, the wNAF point multiplication algorithm was used; which leaked partial information about the nonce used during signature generation. Given an electro-magnetic trace of a few signature generations, the private key could have been computed. This vulnerability affects Firefox < 80 and Firefox for Android < 80.

You can find information about how to handle these issues in the security team's documentation.

Created: 2021-02-19 Last update: 2021-03-24 11:36

Build log checks report 1 warning low

Build log checks report 1 warning

Created: 2017-10-26 Last update: 2017-10-26 07:22

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.5.1 instead of 4.1.4).

Created: 2018-08-20 Last update: 2021-03-24 11:39

testing migrations

excuses:
- Migration status for nss (2:3.61-1 to 2:3.63-1): BLOCKED: Needs an approval (either due to a freeze, the source suite or a manual hint)
- Issues preventing migration:
- blocked by freeze: is a key package (Follow the freeze policy when applying for an unblock)
- Additional info:
- Piuparts tested OK - https://piuparts.debian.org/sid/source/n/nss.html
- autopkgtest for libreoffice/blacklisted: arm64: Ignored failure, ppc64el: Ignored failure
- autopkgtest for thunderbird/blacklisted: ppc64el: Ignored failure
- 27 days old (needed 20 days)
- Not considered

news

[rss feed]

[2021-03-24] Accepted nss 2:3.63-1 (source) into unstable (Mike Hommey)
[2021-02-18] nss 2:3.61-1 MIGRATED to testing (Debian testing watch)
[2021-02-07] Accepted nss 2:3.61-1 (source) into unstable (Mike Hommey)
[2020-12-25] nss 2:3.60-1 MIGRATED to testing (Debian testing watch)
[2020-12-19] Accepted nss 2:3.60-1 (source) into unstable (Mike Hommey)
[2020-11-23] nss 2:3.59-1 MIGRATED to testing (Debian testing watch)
[2020-11-18] Accepted nss 2:3.59-1 (source) into unstable (Mike Hommey)
[2020-10-26] nss 2:3.58-1 MIGRATED to testing (Debian testing watch)
[2020-10-21] Accepted nss 2:3.58-1 (source) into unstable (Mike Hommey)
[2020-09-29] Accepted nss 2:3.26.2-1.1+deb9u2 (source) into oldstable (Adrian Bunk)
[2020-09-08] nss 2:3.56-1 MIGRATED to testing (Debian testing watch)
[2020-09-03] Accepted nss 2:3.56-1 (source) into unstable (Mike Hommey)
[2020-08-03] nss 2:3.55-1 MIGRATED to testing (Debian testing watch)
[2020-07-29] Accepted nss 2:3.55-1 (source) into unstable (Mike Hommey)
[2020-07-23] Accepted nss 2:3.42.1-1+deb10u3 (source amd64) into proposed-updates->stable-new, proposed-updates (Debian FTP Masters) (signed by: Moritz Mühlenhoff)
[2020-07-17] Accepted nss 2:3.42.1-1+deb10u3 (source amd64) into stable->embargoed, stable (Debian FTP Masters) (signed by: Moritz Mühlenhoff)
[2020-06-30] Accepted nss 2:3.26-1+debu8u11 (source amd64) into oldoldstable (Adrian Bunk)
[2020-06-27] nss 2:3.53.1-1 MIGRATED to testing (Debian testing watch)
[2020-06-21] Accepted nss 2:3.53.1-1 (source) into unstable (Mike Hommey)
[2020-06-05] nss 2:3.53-1 MIGRATED to testing (Debian testing watch)
[2020-05-30] Accepted nss 2:3.53-1 (source) into unstable (Mike Hommey)
[2020-05-05] Accepted nss 2:3.52-1 (source) into unstable (Mike Hommey)
[2020-04-08] Accepted nss 2:3.51-1 (source) into unstable (Mike Hommey)
[2020-02-12] Accepted nss 2:3.50-1 (source) into unstable (Mike Hommey)
[2020-01-27] nss 2:3.49.1-1 MIGRATED to testing (Debian testing watch)
[2020-01-22] Accepted nss 2:3.49.1-1 (source) into unstable (Mike Hommey)
[2020-01-09] Accepted nss 2:3.49-1 (source) into unstable (Mike Hommey)
[2020-01-06] Accepted nss 2:3.26-1+debu8u10 (source amd64) into oldoldstable (Markus Koschany)
[2019-12-28] Accepted nss 2:3.48-1 (source) into unstable (Mike Hommey)
[2019-12-07] Accepted nss 2:3.42.1-1+deb10u2 (source amd64) into proposed-updates->stable-new, proposed-updates (Moritz Mühlenhoff)

bugs [bug history graph]

all: 43 45
RC: 1
I&N: 28 29
M&W: 14 15
F&P: 0
patch: 10

links

homepage
buildd: logs, checks, clang, reproducibility, cross
popcon
browse source code
edit tags
other distros
security tracker

ubuntu

[Information about Ubuntu for Debian Developers]

version: 2:3.61-1ubuntu2
9 bugs
patches for 2:3.61-1ubuntu2