8.143. mod_nss

Updated mod_nss packages that fix several bugs are now available for Red Hat Enterprise Linux 6.
The mod_nss module provides strong cryptography for the Apache HTTP Server via the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols, using the Network Security Services (NSS) security library.

Bug Fixes

BZ#866703
Previously, the nss_var_lookup_nss_cert_PEM() function from the nss_engine_vars.c file occasionally caused a memory error. This bug has been fixed and the memory error no longer occurs.
BZ#1002733
Due to a bug in the nss-softokn package that is a dependency of the mod_nss package, the root process of the httpd daemon was occasionally terminated by a SIGTRAP signal. With this update, mod_nss has been updated to depend on a corrected version of nss-softokn and the root httpd process is no longer terminated by SIGTRAP.
BZ#1016628
Due to a bug in the nss-softokn package that is a dependency of the mod_nss package, the httpd daemon sometimes terminated unexpectedly with a segmentation fault and the following message was returned:
NSS_Initialize failed. Certificate database: /etc/httpd/alias
With this update, mod_nss has been updated to depend on a corrected version of nss-softokn and httpd no longer crashes in the described case.
Users of mod_nss are advised to upgrade to these updated packages, which fix these bugs. The httpd service must be restarted for this update to take effect.