- update to NSS 3.28.3

* This is a patch release to fix binary compatibility issues.
    NSS version 3.28, 3.28.1 and 3.28.2 contained changes that were
    in violation with the NSS compatibility promise.
    ECParams, which is part of the public API of the freebl/softokn
    parts of NSS, had been changed to include an additional attribute.
    That size increase caused crashes or malfunctioning with applications
    that use that data structure directly, or indirectly through
    ECPublicKey, ECPrivateKey, NSSLOWKEYPublicKey, NSSLOWKEYPrivateKey,
    or potentially other data structures that reference ECParams.
    The change has been reverted to the original state in bug
    bmo#1334108.
    SECKEYECPublicKey had been extended with a new attribute, named
    "encoding". If an application passed type SECKEYECPublicKey to NSS
    (as part of SECKEYPublicKey), the NSS library read the uninitialized
    attribute. With this NSS release SECKEYECPublicKey.encoding is
    deprecated. NSS no longer reads the attribute, and will always
    set it to ECPoint_Undefined. See bug bmo#1340103.

OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/mozilla-nss?expand=0&rev=231

mozilla-nss.changes

@@ -1,3 +1,28 @@
+-------------------------------------------------------------------
+Mon Feb 20 11:53:55 UTC 2017 - wr@rosenauer.org
+
+- update to NSS 3.28.3
+  * This is a patch release to fix binary compatibility issues.
+    NSS version 3.28, 3.28.1 and 3.28.2 contained changes that were
+    in violation with the NSS compatibility promise.
+
+    ECParams, which is part of the public API of the freebl/softokn
+    parts of NSS, had been changed to include an additional attribute.
+    That size increase caused crashes or malfunctioning with applications
+    that use that data structure directly, or indirectly through
+    ECPublicKey, ECPrivateKey, NSSLOWKEYPublicKey, NSSLOWKEYPrivateKey,
+    or potentially other data structures that reference ECParams.
+    The change has been reverted to the original state in bug
+    bmo#1334108.
+
+    SECKEYECPublicKey had been extended with a new attribute, named
+    "encoding". If an application passed type SECKEYECPublicKey to NSS
+    (as part of SECKEYPublicKey), the NSS library read the uninitialized
+    attribute. With this NSS release SECKEYECPublicKey.encoding is
+    deprecated. NSS no longer reads the attribute, and will always
+    set it to ECPoint_Undefined. See bug bmo#1340103.
+- requires NSPR >= 4.13.1
+
 -------------------------------------------------------------------
 Sun Feb 12 07:31:29 UTC 2017 - wr@rosenauer.org
 

mozilla-nss.spec

@@ -21,11 +21,11 @@
 
 Name:           mozilla-nss
 BuildRequires:  gcc-c++
-BuildRequires:  mozilla-nspr-devel >= 4.13
+BuildRequires:  mozilla-nspr-devel >= 4.13.1
 BuildRequires:  pkg-config
 BuildRequires:  sqlite-devel
 BuildRequires:  zlib-devel
-Version:        3.28.2
+Version:        3.28.3
 Release:        0
 # bug437293
 %ifarch ppc64
@@ -36,8 +36,8 @@ Summary:        Network Security Services
 License:        MPL-2.0
 Group:          System/Libraries
 Url:            http://www.mozilla.org/projects/security/pki/nss/
-Source:         https://ftp.mozilla.org/pub/mozilla.org/security/nss/releases/NSS_3_28_2_RTM/src/nss-%{version}.tar.gz
-# hg clone https://hg.mozilla.org/projects/nss nss-3.28.2/nss ; cd nss-3.28.2/nss ; hg up NSS_3_28_2_RTM
+Source:         https://ftp.mozilla.org/pub/mozilla.org/security/nss/releases/NSS_3_28_3_RTM/src/nss-%{version}.tar.gz
+# hg clone https://hg.mozilla.org/projects/nss nss-3.28.3/nss ; cd nss-3.28.3/nss ; hg up NSS_3_28_3_RTM
 #Source:         nss-%{version}.tar.gz
 Source1:        nss.pc.in
 Source3:        nss-config.in

nss-3.28.2.tar.gz

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:4249f65c2150b9a3f9e60cbe76ef0cb8e3ebed37848192611a1f0592f5db510e
-size 7451885

nss-3.28.3.tar.gz

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:dd3c4f0f8e132eef3c7c40b7d3208741d0fabe26fec322b4e4fe6d6f5e143df3
+size 7452825