Mailinglist Archive: opensuse-updates (48 mails)
| < Previous | Next > |
openSUSE-SU-2014:0987-1: moderate: cipher upgrade and SNI support for apache2-mod_nss
- From: opensuse-security@xxxxxxxxxxxx
- Date: Mon, 11 Aug 2014 12:10:28 +0200 (CEST)
- Message-id: <20140811101028.A762A3218D@maintenance.suse.de>
openSUSE Security Update: cipher upgrade and SNI support for apache2-mod_nss
______________________________________________________________________________
Announcement ID: openSUSE-SU-2014:0987-1
Rating: moderate
References: #859439 #863518 #878681
Affected Products:
openSUSE 11.4
______________________________________________________________________________
An update that contains security fixes can now be installed.
Description:
This update introduces Server Name Indication support to mod_nss, which
was not available previously. In addition to SNI, GCM ciphers have been
added to the cipher list of mod_nss. A bug was corrected that prevented
the entry of the certificate store passphrase if such a passphrase was
set. Please note that the configuration presets were slightly changed so
that the new ciphers are preferred (NSSCipherSuite directive), and the
VirtualHost directive is now contained in
/etc/apache2/vhosts.d/vhost-nss.templace (not used by apache because not
named *.conf).
Patch Instructions:
To install this openSUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product:
- openSUSE 11.4:
zypper in -t patch 2014-74
To bring your system up-to-date, use "zypper patch".
Package List:
- openSUSE 11.4 (i586 x86_64):
apache2-mod_nss-1.0.8-6.1
apache2-mod_nss-debuginfo-1.0.8-6.1
apache2-mod_nss-debugsource-1.0.8-6.1
References:
https://bugzilla.novell.com/859439
https://bugzilla.novell.com/863518
https://bugzilla.novell.com/878681
______________________________________________________________________________
Announcement ID: openSUSE-SU-2014:0987-1
Rating: moderate
References: #859439 #863518 #878681
Affected Products:
openSUSE 11.4
______________________________________________________________________________
An update that contains security fixes can now be installed.
Description:
This update introduces Server Name Indication support to mod_nss, which
was not available previously. In addition to SNI, GCM ciphers have been
added to the cipher list of mod_nss. A bug was corrected that prevented
the entry of the certificate store passphrase if such a passphrase was
set. Please note that the configuration presets were slightly changed so
that the new ciphers are preferred (NSSCipherSuite directive), and the
VirtualHost directive is now contained in
/etc/apache2/vhosts.d/vhost-nss.templace (not used by apache because not
named *.conf).
Patch Instructions:
To install this openSUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product:
- openSUSE 11.4:
zypper in -t patch 2014-74
To bring your system up-to-date, use "zypper patch".
Package List:
- openSUSE 11.4 (i586 x86_64):
apache2-mod_nss-1.0.8-6.1
apache2-mod_nss-debuginfo-1.0.8-6.1
apache2-mod_nss-debugsource-1.0.8-6.1
References:
https://bugzilla.novell.com/859439
https://bugzilla.novell.com/863518
https://bugzilla.novell.com/878681
| < Previous | Next > |