[ubuntu/xenial-proposed] nss 2:3.21-1ubuntu1 (Accepted)
Marc Deslauriers
marc.deslauriers at ubuntu.com
Thu Nov 26 15:13:14 UTC 2015
nss (2:3.21-1ubuntu1) xenial; urgency=medium
* Merge from Debian unstable. Remaining changes:
- debian/rules:
+ Add x32 support.
+ Also ship blapi.h and alghmac.h in libnss3-dev.
- debian/control, debian/libnss3-nssdb.*, debian/libnss3.symbols,
debian/pkcs11.txt, debian/rules:
+ Add back support for shared cert and key databases.
- debian/patches/relax_dh_size.patch: relax minimum DH size to 768 bits
for compatibility reasons. This patch will get reverted in the future
once servers have upgraded to longer DH sizes.
- debian/control: remove cross Build Profile from Build-Depends, as it
doesn't seem to be supported by launchpad yet.
nss (2:3.21-1) unstable; urgency=medium
* New upstream release.
* nss/lib/ssl/sslsock.c: Disable transitional scheme for SSL renegotiation.
5 years after the transition started, it shouldn't be necessary anymore.
* nss/lib/ckfw/builtins/certdata.txt: Remove the SPI CA.
* nss/lib/util/secload.c: Fix a warning introduced by our patch to this file.
* debian/libnss3.symbols: Add NSS_3.21 symbol versions.
nss (2:3.20.1-1) unstable; urgency=high
* New upstream release.
* Fixes mfsa2015-133. also known as CVE-2015-7181 and CVE-2015-7182.
nss (2:3.20-1) unstable; urgency=medium
* New upstream release.
* Removed patch for __DATE__ and __TIME__ references from 2:3.19.1-1 because
the parts that matter were applied upstream.
* debian/rules: Move USE_64 to common make flags, and always use
DEB_HOST_ARCH_BITS since it's even supported by dpkg in oldstable, now.
* debian/libnss3.symbols: Add NSS_3.20 symbol versions.
Date: Thu, 26 Nov 2015 08:55:09 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/nss/2:3.21-1ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Thu, 26 Nov 2015 08:55:09 -0500
Source: nss
Binary: libnss3 libnss3-1d libnss3-nssdb libnss3-tools libnss3-dev libnss3-dbg
Architecture: source
Version: 2:3.21-1ubuntu1
Distribution: xenial
Urgency: high
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
libnss3 - Network Security Service libraries
libnss3-1d - Network Security Service libraries - transitional package
libnss3-dbg - Debugging symbols for the Network Security Service libraries
libnss3-dev - Development files for the Network Security Service libraries
libnss3-nssdb - Network Security Security libraries - shared databases
libnss3-tools - Network Security Service tools
Changes:
nss (2:3.21-1ubuntu1) xenial; urgency=medium
.
* Merge from Debian unstable. Remaining changes:
- debian/rules:
+ Add x32 support.
+ Also ship blapi.h and alghmac.h in libnss3-dev.
- debian/control, debian/libnss3-nssdb.*, debian/libnss3.symbols,
debian/pkcs11.txt, debian/rules:
+ Add back support for shared cert and key databases.
- debian/patches/relax_dh_size.patch: relax minimum DH size to 768 bits
for compatibility reasons. This patch will get reverted in the future
once servers have upgraded to longer DH sizes.
- debian/control: remove cross Build Profile from Build-Depends, as it
doesn't seem to be supported by launchpad yet.
.
nss (2:3.21-1) unstable; urgency=medium
.
* New upstream release.
* nss/lib/ssl/sslsock.c: Disable transitional scheme for SSL renegotiation.
5 years after the transition started, it shouldn't be necessary anymore.
* nss/lib/ckfw/builtins/certdata.txt: Remove the SPI CA.
* nss/lib/util/secload.c: Fix a warning introduced by our patch to this file.
* debian/libnss3.symbols: Add NSS_3.21 symbol versions.
.
nss (2:3.20.1-1) unstable; urgency=high
.
* New upstream release.
* Fixes mfsa2015-133. also known as CVE-2015-7181 and CVE-2015-7182.
.
nss (2:3.20-1) unstable; urgency=medium
.
* New upstream release.
* Removed patch for __DATE__ and __TIME__ references from 2:3.19.1-1 because
the parts that matter were applied upstream.
* debian/rules: Move USE_64 to common make flags, and always use
DEB_HOST_ARCH_BITS since it's even supported by dpkg in oldstable, now.
* debian/libnss3.symbols: Add NSS_3.20 symbol versions.
Checksums-Sha1:
a9ecb3b9608cfcc68990897218ca54342f337538 2383 nss_3.21-1ubuntu1.dsc
d4bbbd72b967443e8b65f504cdd157e3df93a84a 6978112 nss_3.21.orig.tar.gz
09796721fc1cc9179c45f80ed6e4e827bd31ede8 27084 nss_3.21-1ubuntu1.debian.tar.xz
Checksums-Sha256:
5d04395b7e97784b470d395f33368b051a1375acbbb95d25ad3d4c22a71c7def 2383 nss_3.21-1ubuntu1.dsc
3f7a5b027d7cdd5c0e4ff7544da33fdc6f56c2f8c27fff02938fd4a6fbe87239 6978112 nss_3.21.orig.tar.gz
4c8a6491a5fbcffe453bd5d07528ec9648d6fee3b23407a71df52b368ffe2917 27084 nss_3.21-1ubuntu1.debian.tar.xz
Files:
388f2c78d95b73b59adefbcaa96677db 2383 libs optional nss_3.21-1ubuntu1.dsc
3c8b2ed880dd3a8d86c9e0151afe6eba 6978112 libs optional nss_3.21.orig.tar.gz
79384f0a431a743294b242c56a94a8ea 27084 libs optional nss_3.21-1ubuntu1.debian.tar.xz
Original-Maintainer: Maintainers of Mozilla-related packages <pkg-mozilla-maintainers at lists.alioth.debian.org>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=p2vw
-----END PGP SIGNATURE-----
More information about the Xenial-changes
mailing list