Issued:: 2016-05-10
Updated:: 2016-05-10

RHBA-2016:0751 - Bug Fix Advisory

Overview
Updated Packages

Synopsis

mod_nss bug fix and enhancement update

Type/Severity

Bug Fix Advisory

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for mod_nss is now available for Red Hat Enterprise Linux 6.

Description

The mod_nss module provides strong cryptography for the Apache HTTP Server via the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols, using the Network Security Services (NSS) security library.

For detailed information on changes in this release, see the Red Hat Enterprise Linux 6.8 Release Notes and Red Hat Enterprise Linux 6.8 Technical Notes linked from the References section.

Users of mod_nss are advised to upgrade to these updated packages.

Solution

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat Enterprise Linux Server 6 x86_64
Red Hat Enterprise Linux Server 6 i386
Red Hat Enterprise Linux Server - Extended Life Cycle Support 6 i386
Red Hat Enterprise Linux Workstation 6 i386
Red Hat Enterprise Linux Desktop 6 x86_64
Red Hat Enterprise Linux Desktop 6 i386
Red Hat Enterprise Linux for IBM z Systems 6 s390x
Red Hat Enterprise Linux for Power, big endian 6 ppc64
Red Hat Enterprise Linux for Scientific Computing 6 x86_64
Red Hat Enterprise Linux Server from RHUI 6 x86_64
Red Hat Enterprise Linux Server from RHUI 6 i386
Red Hat Enterprise Linux Server - Extended Life Cycle Support 6 x86_64
Red Hat Enterprise Linux Workstation 6 x86_64
Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 6 s390x
Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension 6 x86_64
Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension 6 i386
Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension (for IBM z Systems) 6 s390x

Fixes

BZ - 1214366 - ssl re-negotiation buffer size in mod_nss is hard-coded at 128K
BZ - 1277613 - Segmentation fault in httpd/mod_nss in the parent process while reloading via SIGHUP
BZ - 1295490 - [RFE] Add server-side Server Name Indication (SNI) support
BZ - 1312052 - NSSProtocol is ignored when NSSFIPS is enabled.

CVEs

(none)

References

http://www.redhat.com/security/updates/classification/#normal

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux Server 6

SRPM
mod_nss-1.0.10-6.el6.src.rpm	SHA-256: 9aa31c5ba6dc1854036333d967aae95772586524c0e4983ff9033259e0ff06a8
x86_64
mod_nss-1.0.10-6.el6.x86_64.rpm	SHA-256: 1800f191529c04f14e97737cca35ac742e1a0e5175f2858741f9214ffdf11174
mod_nss-1.0.10-6.el6.x86_64.rpm	SHA-256: 1800f191529c04f14e97737cca35ac742e1a0e5175f2858741f9214ffdf11174
mod_nss-debuginfo-1.0.10-6.el6.x86_64.rpm	SHA-256: 8e1cec6b9f527b40ece512d3edddb1a3b9a3f56cbf150e3096594df75108b6d8
mod_nss-debuginfo-1.0.10-6.el6.x86_64.rpm	SHA-256: 8e1cec6b9f527b40ece512d3edddb1a3b9a3f56cbf150e3096594df75108b6d8
i386
mod_nss-1.0.10-6.el6.i686.rpm	SHA-256: d5c7268955fccdef581240735041f9a4bb78e0344af486c842be2acb21d9ac6d
mod_nss-debuginfo-1.0.10-6.el6.i686.rpm	SHA-256: aa199a44dfe0b197da3b0667c45f9f3461bfb5bad63a97fd2bb29bcfdb5ffb38

Red Hat Enterprise Linux Server from RHUI 6

SRPM
mod_nss-1.0.10-6.el6.src.rpm	SHA-256: 9aa31c5ba6dc1854036333d967aae95772586524c0e4983ff9033259e0ff06a8
x86_64
mod_nss-1.0.10-6.el6.x86_64.rpm	SHA-256: 1800f191529c04f14e97737cca35ac742e1a0e5175f2858741f9214ffdf11174
mod_nss-debuginfo-1.0.10-6.el6.x86_64.rpm	SHA-256: 8e1cec6b9f527b40ece512d3edddb1a3b9a3f56cbf150e3096594df75108b6d8
i386
mod_nss-1.0.10-6.el6.i686.rpm	SHA-256: d5c7268955fccdef581240735041f9a4bb78e0344af486c842be2acb21d9ac6d
mod_nss-debuginfo-1.0.10-6.el6.i686.rpm	SHA-256: aa199a44dfe0b197da3b0667c45f9f3461bfb5bad63a97fd2bb29bcfdb5ffb38

Red Hat Enterprise Linux Server - Extended Life Cycle Support 6

SRPM
mod_nss-1.0.10-6.el6.src.rpm	SHA-256: 9aa31c5ba6dc1854036333d967aae95772586524c0e4983ff9033259e0ff06a8
x86_64
mod_nss-1.0.10-6.el6.x86_64.rpm	SHA-256: 1800f191529c04f14e97737cca35ac742e1a0e5175f2858741f9214ffdf11174
mod_nss-debuginfo-1.0.10-6.el6.x86_64.rpm	SHA-256: 8e1cec6b9f527b40ece512d3edddb1a3b9a3f56cbf150e3096594df75108b6d8
i386
mod_nss-1.0.10-6.el6.i686.rpm	SHA-256: d5c7268955fccdef581240735041f9a4bb78e0344af486c842be2acb21d9ac6d
mod_nss-debuginfo-1.0.10-6.el6.i686.rpm	SHA-256: aa199a44dfe0b197da3b0667c45f9f3461bfb5bad63a97fd2bb29bcfdb5ffb38

Red Hat Enterprise Linux Workstation 6

SRPM
mod_nss-1.0.10-6.el6.src.rpm	SHA-256: 9aa31c5ba6dc1854036333d967aae95772586524c0e4983ff9033259e0ff06a8
x86_64
mod_nss-1.0.10-6.el6.x86_64.rpm	SHA-256: 1800f191529c04f14e97737cca35ac742e1a0e5175f2858741f9214ffdf11174
mod_nss-debuginfo-1.0.10-6.el6.x86_64.rpm	SHA-256: 8e1cec6b9f527b40ece512d3edddb1a3b9a3f56cbf150e3096594df75108b6d8
i386
mod_nss-1.0.10-6.el6.i686.rpm	SHA-256: d5c7268955fccdef581240735041f9a4bb78e0344af486c842be2acb21d9ac6d
mod_nss-debuginfo-1.0.10-6.el6.i686.rpm	SHA-256: aa199a44dfe0b197da3b0667c45f9f3461bfb5bad63a97fd2bb29bcfdb5ffb38

Red Hat Enterprise Linux Desktop 6

SRPM
mod_nss-1.0.10-6.el6.src.rpm	SHA-256: 9aa31c5ba6dc1854036333d967aae95772586524c0e4983ff9033259e0ff06a8
x86_64
mod_nss-1.0.10-6.el6.x86_64.rpm	SHA-256: 1800f191529c04f14e97737cca35ac742e1a0e5175f2858741f9214ffdf11174
mod_nss-debuginfo-1.0.10-6.el6.x86_64.rpm	SHA-256: 8e1cec6b9f527b40ece512d3edddb1a3b9a3f56cbf150e3096594df75108b6d8
i386
mod_nss-1.0.10-6.el6.i686.rpm	SHA-256: d5c7268955fccdef581240735041f9a4bb78e0344af486c842be2acb21d9ac6d
mod_nss-debuginfo-1.0.10-6.el6.i686.rpm	SHA-256: aa199a44dfe0b197da3b0667c45f9f3461bfb5bad63a97fd2bb29bcfdb5ffb38

Red Hat Enterprise Linux for IBM z Systems 6

SRPM
mod_nss-1.0.10-6.el6.src.rpm	SHA-256: 9aa31c5ba6dc1854036333d967aae95772586524c0e4983ff9033259e0ff06a8
s390x
mod_nss-1.0.10-6.el6.s390x.rpm	SHA-256: 6079baccbffcdfa2edb57f968f48a414eb1563c9570f50cc9580dc9c51d363cc
mod_nss-debuginfo-1.0.10-6.el6.s390x.rpm	SHA-256: 8179bd3c2fadd7b124677ba85f51dc70acbfb8d7b7537c9641a1fca5b08c1332

Red Hat Enterprise Linux for Power, big endian 6

SRPM
mod_nss-1.0.10-6.el6.src.rpm	SHA-256: 9aa31c5ba6dc1854036333d967aae95772586524c0e4983ff9033259e0ff06a8
ppc64
mod_nss-1.0.10-6.el6.ppc64.rpm	SHA-256: 469bc7816fab7d26957d5c657d7da8633d711ded1666c54dd43ebd09aab3ec8c
mod_nss-debuginfo-1.0.10-6.el6.ppc64.rpm	SHA-256: 2adc0dcbe161429c0c1f05574641525c7159312a2b04c3d41ac6294a2278b8bc

Red Hat Enterprise Linux for Scientific Computing 6

SRPM
mod_nss-1.0.10-6.el6.src.rpm	SHA-256: 9aa31c5ba6dc1854036333d967aae95772586524c0e4983ff9033259e0ff06a8
x86_64
mod_nss-1.0.10-6.el6.x86_64.rpm	SHA-256: 1800f191529c04f14e97737cca35ac742e1a0e5175f2858741f9214ffdf11174
mod_nss-debuginfo-1.0.10-6.el6.x86_64.rpm	SHA-256: 8e1cec6b9f527b40ece512d3edddb1a3b9a3f56cbf150e3096594df75108b6d8

Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 6

SRPM
mod_nss-1.0.10-6.el6.src.rpm	SHA-256: 9aa31c5ba6dc1854036333d967aae95772586524c0e4983ff9033259e0ff06a8
s390x
mod_nss-1.0.10-6.el6.s390x.rpm	SHA-256: 6079baccbffcdfa2edb57f968f48a414eb1563c9570f50cc9580dc9c51d363cc
mod_nss-debuginfo-1.0.10-6.el6.s390x.rpm	SHA-256: 8179bd3c2fadd7b124677ba85f51dc70acbfb8d7b7537c9641a1fca5b08c1332

Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension 6

SRPM
mod_nss-1.0.10-6.el6.src.rpm	SHA-256: 9aa31c5ba6dc1854036333d967aae95772586524c0e4983ff9033259e0ff06a8
x86_64
mod_nss-1.0.10-6.el6.x86_64.rpm	SHA-256: 1800f191529c04f14e97737cca35ac742e1a0e5175f2858741f9214ffdf11174
mod_nss-debuginfo-1.0.10-6.el6.x86_64.rpm	SHA-256: 8e1cec6b9f527b40ece512d3edddb1a3b9a3f56cbf150e3096594df75108b6d8
i386
mod_nss-1.0.10-6.el6.i686.rpm	SHA-256: d5c7268955fccdef581240735041f9a4bb78e0344af486c842be2acb21d9ac6d
mod_nss-debuginfo-1.0.10-6.el6.i686.rpm	SHA-256: aa199a44dfe0b197da3b0667c45f9f3461bfb5bad63a97fd2bb29bcfdb5ffb38

Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension (for IBM z Systems) 6

SRPM
mod_nss-1.0.10-6.el6.src.rpm	SHA-256: 9aa31c5ba6dc1854036333d967aae95772586524c0e4983ff9033259e0ff06a8
s390x
mod_nss-1.0.10-6.el6.s390x.rpm	SHA-256: 6079baccbffcdfa2edb57f968f48a414eb1563c9570f50cc9580dc9c51d363cc
mod_nss-debuginfo-1.0.10-6.el6.s390x.rpm	SHA-256: 8179bd3c2fadd7b124677ba85f51dc70acbfb8d7b7537c9641a1fca5b08c1332

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation