LISTSERV 16.5 - SCIENTIFIC-LINUX-ERRATA Archives

Synopsis:          Moderate: nss security update
Advisory ID:       SLSA-2018:2768-1
Issue Date:        2018-09-25
CVE Numbers:       CVE-2018-12384
--

Security Fix(es):

* nss: ServerHello.random is all zeros when handling a v2-compatible
ClientHello (CVE-2018-12384)
--

SL7
  x86_64
    nss-3.36.0-7.el7_5.i686.rpm
    nss-3.36.0-7.el7_5.x86_64.rpm
    nss-debuginfo-3.36.0-7.el7_5.i686.rpm
    nss-debuginfo-3.36.0-7.el7_5.x86_64.rpm
    nss-sysinit-3.36.0-7.el7_5.x86_64.rpm
    nss-tools-3.36.0-7.el7_5.x86_64.rpm
    nss-devel-3.36.0-7.el7_5.i686.rpm
    nss-devel-3.36.0-7.el7_5.x86_64.rpm
    nss-pkcs11-devel-3.36.0-7.el7_5.i686.rpm
    nss-pkcs11-devel-3.36.0-7.el7_5.x86_64.rpm
    nss-3.36.0-7.el7_5.src.rpm

- Scientific Linux Development Team