- Issued:
- 2011-12-06
- Updated:
- 2011-12-06
RHBA-2011:1675 - Bug Fix Advisory
Synopsis
jss bug fix update
Type/Severity
Bug Fix Advisory
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory.
Topic
An updated jss package that fixes various bugs is now available for Red Hat
Enterprise Linux 6.
Description
JSS is a Java binding to Network Security Services (NSS), which provides SSL/TLS
network protocols and other security services in the Public Key Infrastructure
(PKI) suite. JSS is primarily utilized by the Certificate Server.
This update fixes the following bugs:
- The java.net.SocketException was accompanied by a misleading error message
because the exception definition was using a variable pointed to a wrong
address. With this update, the underlying code has been modified and the
exception now uses the correct error message. (BZ#660436)
- On Luna SA HSM in FIPS mode, Red Hat Certificate System failed to generate a
certificate and threw an exception if ECC (Elliptic Curve Cryptography)
algorithms was set to higher than SHA1withEC. This occurred because in FIPS
mode, the SSL protocol requires ECDH (Elliptic Curve Diffie Hellman), which is
not supported by Luna SA. With this update, the ECDH support has been provided
by JSS/NSS, and certificates are created and used with SSL correctly.
(BZ#705947)
- In FIPS mode, DRM (Data Recovery Manager) failed to recover keys because it
failed to import the respective key. With this update, the key is generated on
recovery and the recovery succeeds. (BZ#733551)
All users of jss are advised to upgrade to this updated package, which fixes
these bugs.
Solution
Before applying this update, make sure all previously-released errata
relevant to your system have been applied.
This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/kb/docs/DOC-11259
Affected Products
- Red Hat Enterprise Linux Server 6 x86_64
- Red Hat Enterprise Linux Server 6 i386
- Red Hat Enterprise Linux Server - Extended Life Cycle Support 6 x86_64
- Red Hat Enterprise Linux Server - Extended Life Cycle Support 6 i386
- Red Hat Enterprise Linux Workstation 6 x86_64
- Red Hat Enterprise Linux Workstation 6 i386
- Red Hat Enterprise Linux Desktop 6 x86_64
- Red Hat Enterprise Linux Desktop 6 i386
- Red Hat Enterprise Linux for IBM z Systems 6 s390x
- Red Hat Enterprise Linux for Power, big endian 6 ppc64
- Red Hat Enterprise Linux for Scientific Computing 6 x86_64
- Red Hat Enterprise Linux Server from RHUI 6 x86_64
- Red Hat Enterprise Linux Server from RHUI 6 i386
- Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 6 s390x
Fixes
- BZ - 660436 - Warnings should be cleaned up in JSS build
- BZ - 705947 - Cannot create system certs when using LunaSA HSM in FIPS Mode and ECC algorithms
- BZ - 715621 - Defects revealed by Coverity scan
- BZ - 733551 - DRM failed to recovery keys when in FIPS mode (HSM + NSS)
CVEs
(none)
References
(none)
Note:
More recent versions of these packages may be available.
Click a package name for more details.
Red Hat Enterprise Linux Server 6
| SRPM | |
|---|---|
| jss-4.2.6-20.el6.src.rpm | SHA-256: 554c3463169ea8e69dbd7485f575f1c40bddc17fea8654f88a0e90f679719e74 |
| x86_64 | |
| jss-4.2.6-20.el6.x86_64.rpm | SHA-256: e48f71ad91854f3654508742e8771c26a404f8a7b5fd9614eb222a376b49acea |
| jss-debuginfo-4.2.6-20.el6.x86_64.rpm | SHA-256: d516ece18c0be5b83b920487ba74c466e46f7049cb5050c7b86d3947f74efcf2 |
| jss-debuginfo-4.2.6-20.el6.x86_64.rpm | SHA-256: d516ece18c0be5b83b920487ba74c466e46f7049cb5050c7b86d3947f74efcf2 |
| jss-javadoc-4.2.6-20.el6.x86_64.rpm | SHA-256: 1f1596c6f5ef10c31bacc2920e86344bfdfdfc012692bfe72648020a0f574385 |
| i386 | |
| jss-4.2.6-20.el6.i686.rpm | SHA-256: 5894e273e6c0a01ed9634b161756cf9e0b8a49ad06a5cb1dc19f72796876554b |
| jss-debuginfo-4.2.6-20.el6.i686.rpm | SHA-256: 665efa213e213348106438674ca4469a0c4b22e7e5ca225b4f273b6c3e4cf78b |
| jss-debuginfo-4.2.6-20.el6.i686.rpm | SHA-256: 665efa213e213348106438674ca4469a0c4b22e7e5ca225b4f273b6c3e4cf78b |
| jss-javadoc-4.2.6-20.el6.i686.rpm | SHA-256: 797fde1393de4486bcd1125c6ec155a80e561baee92b7efe83256a33d05db830 |
Red Hat Enterprise Linux Server - Extended Life Cycle Support 6
| SRPM | |
|---|---|
| jss-4.2.6-20.el6.src.rpm | SHA-256: 554c3463169ea8e69dbd7485f575f1c40bddc17fea8654f88a0e90f679719e74 |
| x86_64 | |
| jss-4.2.6-20.el6.x86_64.rpm | SHA-256: e48f71ad91854f3654508742e8771c26a404f8a7b5fd9614eb222a376b49acea |
| jss-debuginfo-4.2.6-20.el6.x86_64.rpm | SHA-256: d516ece18c0be5b83b920487ba74c466e46f7049cb5050c7b86d3947f74efcf2 |
| jss-debuginfo-4.2.6-20.el6.x86_64.rpm | SHA-256: d516ece18c0be5b83b920487ba74c466e46f7049cb5050c7b86d3947f74efcf2 |
| jss-javadoc-4.2.6-20.el6.x86_64.rpm | SHA-256: 1f1596c6f5ef10c31bacc2920e86344bfdfdfc012692bfe72648020a0f574385 |
| i386 | |
| jss-4.2.6-20.el6.i686.rpm | SHA-256: 5894e273e6c0a01ed9634b161756cf9e0b8a49ad06a5cb1dc19f72796876554b |
| jss-debuginfo-4.2.6-20.el6.i686.rpm | SHA-256: 665efa213e213348106438674ca4469a0c4b22e7e5ca225b4f273b6c3e4cf78b |
| jss-debuginfo-4.2.6-20.el6.i686.rpm | SHA-256: 665efa213e213348106438674ca4469a0c4b22e7e5ca225b4f273b6c3e4cf78b |
| jss-javadoc-4.2.6-20.el6.i686.rpm | SHA-256: 797fde1393de4486bcd1125c6ec155a80e561baee92b7efe83256a33d05db830 |
Red Hat Enterprise Linux Workstation 6
| SRPM | |
|---|---|
| jss-4.2.6-20.el6.src.rpm | SHA-256: 554c3463169ea8e69dbd7485f575f1c40bddc17fea8654f88a0e90f679719e74 |
| x86_64 | |
| jss-4.2.6-20.el6.x86_64.rpm | SHA-256: e48f71ad91854f3654508742e8771c26a404f8a7b5fd9614eb222a376b49acea |
| jss-debuginfo-4.2.6-20.el6.x86_64.rpm | SHA-256: d516ece18c0be5b83b920487ba74c466e46f7049cb5050c7b86d3947f74efcf2 |
| jss-debuginfo-4.2.6-20.el6.x86_64.rpm | SHA-256: d516ece18c0be5b83b920487ba74c466e46f7049cb5050c7b86d3947f74efcf2 |
| jss-javadoc-4.2.6-20.el6.x86_64.rpm | SHA-256: 1f1596c6f5ef10c31bacc2920e86344bfdfdfc012692bfe72648020a0f574385 |
| i386 | |
| jss-4.2.6-20.el6.i686.rpm | SHA-256: 5894e273e6c0a01ed9634b161756cf9e0b8a49ad06a5cb1dc19f72796876554b |
| jss-debuginfo-4.2.6-20.el6.i686.rpm | SHA-256: 665efa213e213348106438674ca4469a0c4b22e7e5ca225b4f273b6c3e4cf78b |
| jss-debuginfo-4.2.6-20.el6.i686.rpm | SHA-256: 665efa213e213348106438674ca4469a0c4b22e7e5ca225b4f273b6c3e4cf78b |
| jss-javadoc-4.2.6-20.el6.i686.rpm | SHA-256: 797fde1393de4486bcd1125c6ec155a80e561baee92b7efe83256a33d05db830 |
Red Hat Enterprise Linux Desktop 6
| SRPM | |
|---|---|
| jss-4.2.6-20.el6.src.rpm | SHA-256: 554c3463169ea8e69dbd7485f575f1c40bddc17fea8654f88a0e90f679719e74 |
| x86_64 | |
| jss-4.2.6-20.el6.x86_64.rpm | SHA-256: e48f71ad91854f3654508742e8771c26a404f8a7b5fd9614eb222a376b49acea |
| jss-debuginfo-4.2.6-20.el6.x86_64.rpm | SHA-256: d516ece18c0be5b83b920487ba74c466e46f7049cb5050c7b86d3947f74efcf2 |
| jss-debuginfo-4.2.6-20.el6.x86_64.rpm | SHA-256: d516ece18c0be5b83b920487ba74c466e46f7049cb5050c7b86d3947f74efcf2 |
| jss-javadoc-4.2.6-20.el6.x86_64.rpm | SHA-256: 1f1596c6f5ef10c31bacc2920e86344bfdfdfc012692bfe72648020a0f574385 |
| i386 | |
| jss-4.2.6-20.el6.i686.rpm | SHA-256: 5894e273e6c0a01ed9634b161756cf9e0b8a49ad06a5cb1dc19f72796876554b |
| jss-debuginfo-4.2.6-20.el6.i686.rpm | SHA-256: 665efa213e213348106438674ca4469a0c4b22e7e5ca225b4f273b6c3e4cf78b |
| jss-debuginfo-4.2.6-20.el6.i686.rpm | SHA-256: 665efa213e213348106438674ca4469a0c4b22e7e5ca225b4f273b6c3e4cf78b |
| jss-javadoc-4.2.6-20.el6.i686.rpm | SHA-256: 797fde1393de4486bcd1125c6ec155a80e561baee92b7efe83256a33d05db830 |
Red Hat Enterprise Linux for IBM z Systems 6
| SRPM | |
|---|---|
| jss-4.2.6-20.el6.src.rpm | SHA-256: 554c3463169ea8e69dbd7485f575f1c40bddc17fea8654f88a0e90f679719e74 |
| s390x | |
| jss-4.2.6-20.el6.s390x.rpm | SHA-256: a29c265ebfba267dba888e4e3e48014dfb2c356af7dc0346a0e57acfd6c380f6 |
| jss-debuginfo-4.2.6-20.el6.s390x.rpm | SHA-256: 8a05cc86aa637be49b6d0db1e689ab661dc2a131b76ae5374427fa3cc1626b08 |
| jss-debuginfo-4.2.6-20.el6.s390x.rpm | SHA-256: 8a05cc86aa637be49b6d0db1e689ab661dc2a131b76ae5374427fa3cc1626b08 |
| jss-javadoc-4.2.6-20.el6.s390x.rpm | SHA-256: e58216e3c23aa5921c159cd0c2c8bee4da910ed599777b898c8013854f6ceae5 |
Red Hat Enterprise Linux for Power, big endian 6
| SRPM | |
|---|---|
| jss-4.2.6-20.el6.src.rpm | SHA-256: 554c3463169ea8e69dbd7485f575f1c40bddc17fea8654f88a0e90f679719e74 |
| ppc64 | |
| jss-4.2.6-20.el6.ppc64.rpm | SHA-256: fc95b0386d2dd37b448afb5203846589be4ecdc38ece4e0d2354367484e2d6cc |
| jss-debuginfo-4.2.6-20.el6.ppc64.rpm | SHA-256: e0023992a71d592790ce4f876734f59fdf51ec61d531599bb34f1fffc1aab35d |
| jss-debuginfo-4.2.6-20.el6.ppc64.rpm | SHA-256: e0023992a71d592790ce4f876734f59fdf51ec61d531599bb34f1fffc1aab35d |
| jss-javadoc-4.2.6-20.el6.ppc64.rpm | SHA-256: 2d885d47d382aa7f45d1a02b8ca9acb803ba869d3cea8963eb825e41d84aba4e |
Red Hat Enterprise Linux for Scientific Computing 6
| SRPM | |
|---|---|
| jss-4.2.6-20.el6.src.rpm | SHA-256: 554c3463169ea8e69dbd7485f575f1c40bddc17fea8654f88a0e90f679719e74 |
| x86_64 | |
| jss-4.2.6-20.el6.x86_64.rpm | SHA-256: e48f71ad91854f3654508742e8771c26a404f8a7b5fd9614eb222a376b49acea |
| jss-debuginfo-4.2.6-20.el6.x86_64.rpm | SHA-256: d516ece18c0be5b83b920487ba74c466e46f7049cb5050c7b86d3947f74efcf2 |
| jss-debuginfo-4.2.6-20.el6.x86_64.rpm | SHA-256: d516ece18c0be5b83b920487ba74c466e46f7049cb5050c7b86d3947f74efcf2 |
| jss-javadoc-4.2.6-20.el6.x86_64.rpm | SHA-256: 1f1596c6f5ef10c31bacc2920e86344bfdfdfc012692bfe72648020a0f574385 |
Red Hat Enterprise Linux Server from RHUI 6
| SRPM | |
|---|---|
| jss-4.2.6-20.el6.src.rpm | SHA-256: 554c3463169ea8e69dbd7485f575f1c40bddc17fea8654f88a0e90f679719e74 |
| x86_64 | |
| jss-4.2.6-20.el6.x86_64.rpm | SHA-256: e48f71ad91854f3654508742e8771c26a404f8a7b5fd9614eb222a376b49acea |
| jss-debuginfo-4.2.6-20.el6.x86_64.rpm | SHA-256: d516ece18c0be5b83b920487ba74c466e46f7049cb5050c7b86d3947f74efcf2 |
| jss-debuginfo-4.2.6-20.el6.x86_64.rpm | SHA-256: d516ece18c0be5b83b920487ba74c466e46f7049cb5050c7b86d3947f74efcf2 |
| jss-javadoc-4.2.6-20.el6.x86_64.rpm | SHA-256: 1f1596c6f5ef10c31bacc2920e86344bfdfdfc012692bfe72648020a0f574385 |
| i386 | |
| jss-4.2.6-20.el6.i686.rpm | SHA-256: 5894e273e6c0a01ed9634b161756cf9e0b8a49ad06a5cb1dc19f72796876554b |
| jss-debuginfo-4.2.6-20.el6.i686.rpm | SHA-256: 665efa213e213348106438674ca4469a0c4b22e7e5ca225b4f273b6c3e4cf78b |
| jss-debuginfo-4.2.6-20.el6.i686.rpm | SHA-256: 665efa213e213348106438674ca4469a0c4b22e7e5ca225b4f273b6c3e4cf78b |
| jss-javadoc-4.2.6-20.el6.i686.rpm | SHA-256: 797fde1393de4486bcd1125c6ec155a80e561baee92b7efe83256a33d05db830 |
Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 6
| SRPM | |
|---|---|
| jss-4.2.6-20.el6.src.rpm | SHA-256: 554c3463169ea8e69dbd7485f575f1c40bddc17fea8654f88a0e90f679719e74 |
| s390x | |
| jss-4.2.6-20.el6.s390x.rpm | SHA-256: a29c265ebfba267dba888e4e3e48014dfb2c356af7dc0346a0e57acfd6c380f6 |
| jss-debuginfo-4.2.6-20.el6.s390x.rpm | SHA-256: 8a05cc86aa637be49b6d0db1e689ab661dc2a131b76ae5374427fa3cc1626b08 |
| jss-debuginfo-4.2.6-20.el6.s390x.rpm | SHA-256: 8a05cc86aa637be49b6d0db1e689ab661dc2a131b76ae5374427fa3cc1626b08 |
| jss-javadoc-4.2.6-20.el6.s390x.rpm | SHA-256: e58216e3c23aa5921c159cd0c2c8bee4da910ed599777b898c8013854f6ceae5 |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.