Bug #1740

update of libnssckbi.so needed

Added by Milan Jurik about 6 years ago. Updated over 4 years ago.

Status:ClosedStart date:2011-11-06
Priority:UrgentDue date:
Assignee:OI JDS% Done:

100%

Category:Security
Target version:-
Difficulty:Medium Tags:libnssckbi

Description

libnssckbi.so contains several CA certs which were already revoked by other platforms and represents serious security risk for firefox and thunderbird users. mozilla-nss package should be rebuilt from the latest sources to block rogue certs.

History

#1 Updated by Ryo Murakawa almost 6 years ago

  • Assignee set to OI PKG
  • Tags changed from needs-triage to libnssckbi

#2 Updated by Ken Mays over 4 years ago

  • % Done changed from 0 to 100
  • Assignee changed from OI PKG to OI JDS
  • Status changed from New to Closed

Bumped to NSS-3.14.1, this was done as of:
system/library/,5.11-0.151.1.8:20130305T151045Z
web/browser/,5.11-0.151.1.8:20130407T001657Z

Latest is: 3.15.1. Closing ticket.

Also available in: Atom