From 5163190a911c9db05d1fe40c83ff7e16af03f1017c1aefb5ac6de2d72ff7d109 Mon Sep 17 00:00:00 2001
From: Wolfgang Rosenauer <wolfgang@rosenauer.org>
Date: Sat, 28 Sep 2013 08:17:22 +0000
Subject: [PATCH] - version 3.15.2   * Support for AES-GCM ciphersuites that
 use the SHA-256 PRF   * MD2, MD4, and MD5 signatures are no longer accepted
 for OCSP     or CRLs   * Add PK11_CipherFinal macro   * sizeof() used
 incorrectly   * nssutil_ReadSecmodDB() leaks memory   * Allow
 SSL_HandshakeNegotiatedExtension to be called before     the handshake is
 finished.   * Deprecate the SSL cipher policy code   * Avoid uninitialized
 data read in the event of a decryption     failure. (CVE-2013-1739)

OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/mozilla-nss?expand=0&rev=134
---
 mozilla-nss.changes | 24 ++++++++++++------------
 1 file changed, 12 insertions(+), 12 deletions(-)

diff --git a/mozilla-nss.changes b/mozilla-nss.changes
index 47f571c..3d39f4a 100644
--- a/mozilla-nss.changes
+++ b/mozilla-nss.changes
@@ -1,18 +1,18 @@
 -------------------------------------------------------------------
 Sat Sep 28 04:20:41 UTC 2013 - crrodriguez@opensuse.org
 
--version 3.15.2
-- Support for AES-GCM ciphersuites that use the SHA-256 PRF 
-- MD2, MD4, and MD5 signatures are no longer accepted for OCSP 
-  or CRLs, 
-- Add PK11_CipherFinal macro
-- sizeof() used incorrectly
-- nssutil_ReadSecmodDB() leaks memory
-- Allow SSL_HandshakeNegotiatedExtension to be called before 
-  the handshake is finished.
-- Deprecate the SSL cipher policy code
-- (CVE-2013-1739) Avoid uninitialized data read in the 
-   event of a decryption failure.
+- version 3.15.2
+  * Support for AES-GCM ciphersuites that use the SHA-256 PRF
+  * MD2, MD4, and MD5 signatures are no longer accepted for OCSP
+    or CRLs
+  * Add PK11_CipherFinal macro
+  * sizeof() used incorrectly
+  * nssutil_ReadSecmodDB() leaks memory
+  * Allow SSL_HandshakeNegotiatedExtension to be called before
+    the handshake is finished.
+  * Deprecate the SSL cipher policy code
+  * Avoid uninitialized data read in the event of a decryption
+    failure. (CVE-2013-1739)
 
 -------------------------------------------------------------------
 Fri Jul  5 08:08:57 UTC 2013 - lnussel@suse.de