Hello community, here is the log from the commit of package mozilla-nss for openSUSE:Factory checked in at 2014-08-15 09:58:16 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/mozilla-nss (Old) and /work/SRC/openSUSE:Factory/.mozilla-nss.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "mozilla-nss" Changes: -------- --- /work/SRC/openSUSE:Factory/mozilla-nss/mozilla-nss.changes 2014-07-21 21:39:03.000000000 +0200 +++ /work/SRC/openSUSE:Factory/.mozilla-nss.new/mozilla-nss.changes 2014-08-15 09:58:21.000000000 +0200 @@ -1,0 +2,24 @@ +Tue Aug 12 10:56:55 UTC 2014 - wr@rosenauer.org + +- update to 3.16.4 + * now required for Firefox 32 + Notable Changes: + * The following 1024-bit root CA certificate was restored to allow more + time to develop a better transition strategy for affected sites. It was + removed in NSS 3.16.3, but discussion in the mozilla.dev.security.policy + forum led to the decision to keep this root included longer in order to + give website administrators more time to update their web servers. + - CN = GTE CyberTrust Global Root + * In NSS 3.16.3, the 1024-bit "Entrust.net Secure Server Certification + Authority" root CA certificate was removed. In NSS 3.16.4, a 2048-bit + intermediate CA certificate has been included, without explicit trust. + The intention is to mitigate the effects of the previous removal of the + 1024-bit Entrust.net root certificate, because many public Internet + sites still use the "USERTrust Legacy Secure Server CA" intermediate + certificate that is signed by the 1024-bit Entrust.net root certificate. + The inclusion of the intermediate certificate is a temporary measure to + allow those sites to function, by allowing them to find a trust path to + another 2048-bit root CA certificate. The temporarily included + intermediate certificate expires November 1, 2015. + +------------------------------------------------------------------- Old: ---- nss-3.16.3.tar.gz New: ---- nss-3.16.4.tar.gz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ mozilla-nss.spec ++++++ --- /var/tmp/diff_new_pack.mmtZJR/_old 2014-08-15 09:58:23.000000000 +0200 +++ /var/tmp/diff_new_pack.mmtZJR/_new 2014-08-15 09:58:23.000000000 +0200 @@ -25,7 +25,7 @@ BuildRequires: pkg-config BuildRequires: sqlite-devel BuildRequires: zlib-devel -Version: 3.16.3 +Version: 3.16.4 Release: 0 # bug437293 %ifarch ppc64 @@ -36,7 +36,7 @@ License: MPL-2.0 Group: System/Libraries Url: http://www.mozilla.org/projects/security/pki/nss/ -Source: https://ftp.mozilla.org/pub/mozilla.org/security/nss/releases/NSS_3_16_3_RTM/src/nss-%{version}.tar.gz +Source: https://ftp.mozilla.org/pub/mozilla.org/security/nss/releases/NSS_3_16_4_RTM/src/nss-%{version}.tar.gz # hg clone https://hg.mozilla.org/projects/nss nss-3.16/nss ; cd nss-3.16/nss ; hg up NSS_3_16_RTM #Source: nss-%{version}.tar.gz Source1: nss.pc.in ++++++ nss-3.16.3.tar.gz -> nss-3.16.4.tar.gz ++++++ /work/SRC/openSUSE:Factory/mozilla-nss/nss-3.16.3.tar.gz /work/SRC/openSUSE:Factory/.mozilla-nss.new/nss-3.16.4.tar.gz differ: char 5, line 1 -- To unsubscribe, e-mail: opensuse-commit+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-commit+help@opensuse.org