pkgsrc.se | The NetBSD package collection

Next | Query returned 303 messages, browsing 31 to 40 | Previous

CVS Commit History:

2022-05-31 22:30:10 by Thomas Klausner | Files touched by this commit (2) | Package updated

Log message:
nss: update to 3.79.

This release fixes memory safety violations that can occur when parsing CMS
data. We presume that with enough effort these memory safety violations are
exploitable.

Change:
   - Bug 205717 - Use PK11_GetSlotInfo instead of raw C_GetSlotInfo calls.
   - Bug 1766907 - Update mercurial in clang-format docker image.
   - Bug 1454072 - Use of uninitialized pointer in lg_init after alloc fail.
   - Bug 1769295 - selfserv and tstclnt should use PR_GetPrefLoopbackAddrInfo.
   - Bug 1753315 - Add SECMOD_LockedModuleHasRemovableSlots.
   - Bug 1387919 - Fix secasn1d parsing of indefinite SEQUENCE inside indefinite \ 
GROUP.
   - Bug 1765753 - Added RFC8422 compliant TLS <= 1.2 undefined/compressed \ 
ECPointFormat extension alerts.
   - Bug 1765753 - TLS 1.3 Server: Send protocol_version alert on unsupported \ 
ClientHello.legacy_version.
   - Bug 1764788 - Correct invalid record inner and outer content type alerts.
   - Bug 1757075 - NSS does not properly import or export pkcs12 files with \ 
large passwords and pkcs5v2 encoding.
   - Bug 1766978 - improve error handling after nssCKFWInstance_CreateObjectHandle.
   - Bug 1767590 - Initialize pointers passed to NSS_CMSDigestContext_FinishMultiple.
   - Bug 1769302 - NSS 3.79 should depend on NSPR 4.34

2022-05-13 15:40:36 by Tobias Nygren | Files touched by this commit (2)

Log message:
nss: try to fix macOS/aarch64 to not detect as 32-bit

2022-04-28 13:15:55 by Thomas Klausner | Files touched by this commit (2) | Package updated

Log message:
nss: update to 3.78.

Change:

- Bug 1755264 - Added TLS 1.3 zero-length inner plaintext checks
  and tests, zero-length record/fragment handling tests.
- Bug 1294978 - Reworked overlong record size checks and added
  TLS1.3 specific boundaries.
- Bug 1763120 - Add ECH Grease Support to tstclnt
- Bug 1765003 - Add a strict variant of moz::pkix::CheckCertHostname.
- Bug 1166338 - Change SSL_REUSE_SERVER_ECDHE_KEY default to false.
- Bug 1760813 - Make SEC_PKCS12EnableCipher succeed
- Bug 1762489 - Update zlib in NSS to 1.2.12.

2022-04-18 21:12:27 by Adam Ciarcinski | Files touched by this commit (1798) | Package updated

Log message:
revbump for textproc/icu update

2022-04-08 00:58:23 by Ryo ONODERA | Files touched by this commit (1)

Log message:
nss: Regenerate distinfo to follow recent changes

2022-04-07 21:08:40 by Taylor R Campbell | Files touched by this commit (15)

Log message:
devel/nss: Patch ctype(3) abuse.

2022-04-05 12:05:43 by Taylor R Campbell | Files touched by this commit (1)

Log message:
devel/nss: Fix cross-compilation.

2022-03-31 20:10:52 by Thomas Klausner | Files touched by this commit (2) | Package updated

Log message:
nss: update to 3.77.

Changes:
   - Bug 1762244 - resolve mpitests build failure on Windows.
   - Bug 1761779 - Fix link to TLS page on wireshark wiki
   - Bug 1754890 - Add two D-TRUST 2020 root certificates.
   - Bug 1751298 - Add Telia Root CA v2 root certificate.
   - Bug 1751305 - Remove expired explicitly distrusted certificates from \ 
certdata.txt.
   - Bug 1005084 - support specific RSA-PSS parameters in mozilla::pkix
   - Bug 1753535 - Remove obsolete stateEnd check in SEC_ASN1DecoderUpdate.
   - Bug 1756271 - Remove token member from NSSSlot struct.
   - Bug 1602379 - Provide secure variants of mpp_pprime and mpp_make_prime.
   - Bug 1757279 - Support UTF-8 library path in the module spec string.
   - Bug 1396616 - Update nssUTF8_Length to RFC 3629 and fix buffer overrun.
   - Bug 1760827 - Add a CI Target for gcc-11.
   - Bug 1760828 - Change to makefiles for gcc-4.8.
   - Bug 1741688 - Update googletest to 1.11.0
   - Bug 1759525 - Add SetTls13GreaseEchSize to experimental API.
   - Bug 1755264 - TLS 1.3 Illegal legacy_version handling/alerts.
   - Bug 1755904 - Fix calculation of ECH HRR Transcript.
   - Bug 1758741 - Allow ld path to be set as environment variable.
   - Bug 1760653 - Ensure we don't read uninitialized memory in ssl gtests.
   - Bug 1758478 - Fix DataBuffer Move Assignment.
   - Bug 1552254 - internal_error alert on Certificate Request with sha1+ecdsa \ 
in TLS 1.3
   - Bug 1755092 - rework signature verification in mozilla::pkix

2022-03-29 15:31:37 by Ryo ONODERA | Files touched by this commit (2)

Log message:
nss: Update to 3.76.1

Changelog:
Change:
   - Bug 1756271 - Remove token member from NSSSlot struct.

2022-03-03 13:13:36 by Thomas Klausner | Files touched by this commit (2) | Package updated

Log message:
nss: update to 3.76.

Changes:
   - Bug 1755555 - Hold tokensLock through nssToken_GetSlot calls in \ 
nssTrustDomain_GetActiveSlots.
   - Bug 1370866 - Check return value of PK11Slot_GetNSSToken.
   - Bug 1747957 - Use Wycheproof JSON for RSASSA-PSS
   - Bug 1679803 - Add SHA256 fingerprint comments to old certdata.txt entries.
   - Bug 1753505 - Avoid truncating files in nss-release-helper.py.
   - Bug 1751157 - Throw illegal_parameter alert for illegal extensions in \ 
handshake message.

Next | Query returned 303 messages, browsing 31 to 40 | Previous