3e03c59ca8
- update to NSS 3.38
* required by Firefox 62.0
New Functionality
* Added support for the TLS Record Size Limit Extension
* When creating a certificate request (CSR) using certutil -R, an
existing orphan private key can be reused. Parameter -k may be
used to specify the ID of an existing orphan key. The available
orphan key IDs can be displayed using command certutil -K.
* When using certutil -O to print the chain for a given certificate
nickname, the new parameter --simple-self-signed may be provided,
which can avoid ambiguous output in some scenarios.
New Functions
* SECITEM_MakeItem - Allocate and make an item with the requested contents
(secitem.h)
New Macros
* SSL_RECORD_SIZE_LIMIT - used to control the TLS Record Size Limit
Extension (in ssl.h)
Notable Changes
* Fixed CVE-2018-0495 (bmo#1464971)
* Various security fixes in the ASN.1 code
* NSS automatically enables caching for SQL database storage on
Linux, if it is located on a network filesystem that's known to
benefit from caching.
* When repeatedly importing the same certificate into an SQL database,
the existing nickname will be kept.
OBS-URL: https://build.opensuse.org/request/show/634751
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/mozilla-nss?expand=0&rev=138
|
||
|---|---|---|
| .gitattributes | ||
| .gitignore | ||
| add-relro-linker-option.patch | ||
| baselibs.conf | ||
| bmo-1400603.patch | ||
| cert9.db | ||
| key4.db | ||
| malloc.patch | ||
| mozilla-nss-rpmlintrc | ||
| mozilla-nss.changes | ||
| mozilla-nss.spec | ||
| nss-3.38.tar.gz | ||
| nss-config.in | ||
| nss-disable-ocsp-test.patch | ||
| nss-no-rpath.patch | ||
| nss-opt.patch | ||
| nss-sqlitename.patch | ||
| nss.pc.in | ||
| pkcs11.txt | ||
| setup-nsssysinit.sh | ||
| system-nspr.patch | ||