From: Peter Korsgaard Date: Thu, 30 May 2019 23:07:41 +0000 (+0200) Subject: package/libnss: security bump to version 3.42.1 X-Git-Url: https://git.libre-soc.org/?a=commitdiff_plain;h=8c0bff1b4f3f5d3c1cb3a848d65b0b11fb59b1f4;p=buildroot.git package/libnss: security bump to version 3.42.1 Fixes the following security issues: (3.41) CVE-2018-12404: Cache side-channel variant of the Bleichenbacher attack (3.42.1) CVE-2018-18508: Add additional null checks to several CMS functions to fix a rare CMS crash. Thanks to Hanno Böck and Damian Poddebniak for the discovery and fixes Signed-off-by: Peter Korsgaard --- diff --git a/package/libnss/libnss.hash b/package/libnss/libnss.hash index 9c3cefd818..1d600f14ef 100644 --- a/package/libnss/libnss.hash +++ b/package/libnss/libnss.hash @@ -1,4 +1,4 @@ -# From https://ftp.mozilla.org/pub/security/nss/releases/NSS_3_39_RTM/src/SHA256SUMS -sha256 6be64dd76f212415cc8bc34343ac1e7389048db4db9a023a84873c411dc5864b nss-3.39.tar.gz +# From https://ftp.mozilla.org/pub/security/nss/releases/NSS_3_42_1_RTM/src/SHA256SUMS +sha256 087db37d38fd49dfd584dd2a8b5baa7fc88de7c9bd97c0c2d5be4abcafc61fc6 nss-3.42.1.tar.gz # Locally calculated sha256 a20c1a32d1f8102432360b42e932869f7c11c7cdbacf9cac554c422132af47f4 nss/COPYING diff --git a/package/libnss/libnss.mk b/package/libnss/libnss.mk index 73c9b08fd2..89d614fe1c 100644 --- a/package/libnss/libnss.mk +++ b/package/libnss/libnss.mk @@ -4,7 +4,7 @@ # ################################################################################ -LIBNSS_VERSION = 3.39 +LIBNSS_VERSION = 3.42.1 LIBNSS_SOURCE = nss-$(LIBNSS_VERSION).tar.gz LIBNSS_SITE = https://ftp.mozilla.org/pub/mozilla.org/security/nss/releases/NSS_$(subst .,_,$(LIBNSS_VERSION))_RTM/src LIBNSS_DISTDIR = dist