Next | Query returned 1 messages, browsing 1 to 10 | previous

History of commit frequency

CVS Commit History:


   2015-11-19 21:39:15 by Benny Siegert | Files touched by this commit (2)
Log message:
Pullup ticket #4853 - requested by he
devel/nss: security fix

Revisions pulled up:
- devel/nss/Makefile                                            1.103
- devel/nss/distinfo                                            1.52

---
   Module Name:	pkgsrc
   Committed By:	ryoon
   Date:		Tue Nov  3 16:55:07 UTC 2015

   Modified Files:
   	pkgsrc/devel/nss: Makefile distinfo

   Log message:
   Update to 3.20.1

   Changelog:
   The following security-relevant bugs have been resolved in NSS 3.20.1.
   Users are encouraged to upgrade immediately.

   * Bug 1192028 (CVE-2015-7181) and
     Bug 1202868 (CVE-2015-7182):
     Several issues existed within the ASN.1 decoder used by NSS for handling
     streaming BER data. While the majority of NSS uses a separate, unaffected
     DER decoder, several public routines also accept BER data, and thus are
     affected. An attacker that successfully exploited these issues can overflow
     the heap and may be able to obtain remote code execution.

Next | Query returned 1 messages, browsing 1 to 10 | previous