Fedora alert FEDORA-2018-4a21a8ca59 (nspr)

From:
             
 
updates@fedoraproject.org 
To:
             
 
package-announce@lists.fedoraproject.org 
Subject:
             
 
[SECURITY] Fedora 27 Update: nspr-4.20.0-1.fc27 
Date:
             
 
Tue, 18 Sep 2018 07:52:52 +0000 (UTC)
Message-ID:
             
 
<20180918075252.D8D34601DECE@bastion01.phx2.fedoraproject.org>
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2018-4a21a8ca59
2018-09-18 07:52:14.644261
--------------------------------------------------------------------------------

Name        : nspr
Product     : Fedora 27
Version     : 4.20.0
Release     : 1.fc27
URL         : http://www.mozilla.org/projects/nspr/
Summary     : Netscape Portable Runtime
Description :
NSPR provides platform independence for non-GUI operating system
facilities. These facilities include threads, thread synchronization,
normal file and network I/O, interval timing and calendar time, basic
memory management (malloc and free) and shared library linking.

--------------------------------------------------------------------------------
Update Information:

Updates the nss family of packages to upstream NSPR 4.20 and NSS 3.39.  For
details about new functionality and a list of bugs fixed in this release please
see the upstream release notes  https://developer.mozilla.org/en-
US/docs/Mozilla/Projects/NSS/NSS_3.39_release_notes
--------------------------------------------------------------------------------
ChangeLog:

* Mon Sep  3 2018 Daiki Ueno <dueno@redhat.com> - 4.20.0-1
- Update to NSPR 4.20
- Use the upstream tarball as it is (rhbz#1578106)
* Thu Mar  8 2018 Daiki Ueno <dueno@redhat.com> - 4.19.0-1
- Update to NSPR 4.19
* Wed Feb  7 2018 Daiki Ueno <dueno@redhat.com> - 4.18.0-1
- Update to NSPR 4.18
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1624704 - CVE-2018-12384 nss: ServerHello.random is all zeros when handling a
v2-compatible ClientHello [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=1624704
  [ 2 ] Bug #1620207 - Enable SSLKEYLOGFILE support
        https://bugzilla.redhat.com/show_bug.cgi?id=1620207
  [ 3 ] Bug #1578106 - Package version is invalid, or no Source URL provided
        https://bugzilla.redhat.com/show_bug.cgi?id=1578106
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2018-4a21a8ca59' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgr...

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedoraproject.org/archives/list/package-ann...