commit patchinfo.4457 for openSUSE:13.1:Update - openSUSE Commits

31 Dec 2015


      Hello community,
here is the log from the commit of package patchinfo.4457 for openSUSE:13.1:Update checked in at 2015-12-31 16:03:59
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:13.1:Update/patchinfo.4457 (Old)
 and      /work/SRC/openSUSE:13.1:Update/.patchinfo.4457.new (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "patchinfo.4457"
Changes:
--------
New Changes file:
NO CHANGES FILE!!!
New:
----
  _patchinfo
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ _patchinfo ++++++
<patchinfo incident="4457">
  <issue id="959888" tracker="bnc">VUL-0: EMBARGOED: CVE-2015-7575: mozilla-nss: TLS 1.2 RSA-mD5 downgrade attack</issue>
  <issue id="CVE-2015-7575" tracker="cve" />
  <category>security</category>
  <rating>moderate</rating>
  <packager>wrosenauer</packager>
  <description>
This update to mozilla-nss 3.20.2 fixes the following issues:
* CVE-2015-7575: MD5 signatures accepted within TLS 1.2 ServerKeyExchange in server signature (boo#952810)
</description>
  <summary>Security update for mozilla-nss</summary>
</patchinfo>