[Bug 1465014] Re: Firefox and Chromium still vulnerable against LOGJAM
Mathew Hodson
mathew.hodson at gmail.com
Thu Jul 9 19:54:59 UTC 2015
This bug was fixed in the package nss 2:3.19.2-0ubuntu15.04.1
---
nss (2:3.19.2-0ubuntu15.04.1) vivid-security; urgency=medium
* SECURITY UPDATE: update to upstream 3.19.2 to fix multiple security
issues and get a new CA certificate bundle.
- CVE-2015-2721
- CVE-2015-2730
* debian/libnss3.symbols: updated for new version.
* debian/patches/relax_dh_size.patch: relax minimum DH size to 768 bits
for compatibility reasons. This patch will get reverted in the future
once servers have upgraded to longer DH sizes.
-- Marc Deslauriers <marc.deslauriers at ubuntu.com> Wed, 08 Jul 2015
11:27:56 -0400
** Changed in: nss (Ubuntu)
Status: Triaged => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to nss in Ubuntu.
https://bugs.launchpad.net/bugs/1465014
Title:
Firefox and Chromium still vulnerable against LOGJAM
To manage notifications about this bug go to:
https://bugs.launchpad.net/nss/+bug/1465014/+subscriptions
More information about the Ubuntu-server-bugs
mailing list