Accepting request 244502 from mozilla:Factory

OBS-URL: https://build.opensuse.org/request/show/244502 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/mozilla-nss?expand=0&rev=94
2014-08-15 07:58:16 +00:00 · 2014-08-15 07:58:16 +00:00 · 7c23619d74
commit 7c23619d74
parent d826e8dd6d c133651414
4 changed files with 29 additions and 5 deletions
--- a/mozilla-nss.changes
+++ b/mozilla-nss.changes
@ -1,3 +1,27 @@
+-------------------------------------------------------------------
+Tue Aug 12 10:56:55 UTC 2014 - wr@rosenauer.org
+
+- update to 3.16.4
+  * now required for Firefox 32
+  Notable Changes:
+  * The following 1024-bit root CA certificate was restored to allow more
+    time to develop a better transition strategy for affected sites. It was
+    removed in NSS 3.16.3, but discussion in the mozilla.dev.security.policy
+    forum led to the decision to keep this root included longer in order to
+    give website administrators more time to update their web servers.
+    - CN = GTE CyberTrust Global Root
+  * In NSS 3.16.3, the 1024-bit "Entrust.net Secure Server Certification
+    Authority" root CA certificate was removed. In NSS 3.16.4, a 2048-bit
+    intermediate CA certificate has been included, without explicit trust.
+    The intention is to mitigate the effects of the previous removal of the
+    1024-bit Entrust.net root certificate, because many public Internet
+    sites still use the "USERTrust Legacy Secure Server CA" intermediate
+    certificate that is signed by the 1024-bit Entrust.net root certificate.
+    The inclusion of the intermediate certificate is a temporary measure to
+    allow those sites to function, by allowing them to find a trust path to
+    another 2048-bit root CA certificate. The temporarily included
+    intermediate certificate expires November 1, 2015.
+
 -------------------------------------------------------------------
 Sat Jul  5 12:10:36 UTC 2014 - wr@rosenauer.org

--- a/mozilla-nss.spec
+++ b/mozilla-nss.spec
@ -25,7 +25,7 @@ BuildRequires:  mozilla-nspr-devel >= 4.10.5
 BuildRequires:  pkg-config
 BuildRequires:  sqlite-devel
 BuildRequires:  zlib-devel
-Version:        3.16.3
+Version:        3.16.4
 Release:        0
 # bug437293
 %ifarch ppc64
@ -36,7 +36,7 @@ Summary:        Network Security Services
 License:        MPL-2.0
 Group:          System/Libraries
 Url:            http://www.mozilla.org/projects/security/pki/nss/
-Source:         https://ftp.mozilla.org/pub/mozilla.org/security/nss/releases/NSS_3_16_3_RTM/src/nss-%{version}.tar.gz
+Source:         https://ftp.mozilla.org/pub/mozilla.org/security/nss/releases/NSS_3_16_4_RTM/src/nss-%{version}.tar.gz
 # hg clone https://hg.mozilla.org/projects/nss nss-3.16/nss ; cd nss-3.16/nss ; hg up NSS_3_16_RTM
 #Source:         nss-%{version}.tar.gz
 Source1:        nss.pc.in
--- a/nss-3.16.3.tar.gz
+++ b/nss-3.16.3.tar.gz
@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:657711ff7a4058043b69019a66f44101d0234eae2b6b80ab900439dbf02add60
-size 6426732
--- a/nss-3.16.4.tar.gz
+++ b/nss-3.16.4.tar.gz
@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:adcd1e655fd9508e7f13847452fd5887a835eff882e3f0d3c42dfcd651650b77
+size 6428795