-
Fri May 26 2017 Daiki Ueno <dueno@redhat.com> - 3.28.3-6
- restore nss-softokn-3.16-add_encrypt_derive.patch
-
Wed May 17 2017 Daiki Ueno <dueno@redhat.com> - 3.28.3-5
- fix login handling for FIPS slots, patch from rhbz#1390154
- backport upstream fix for CVE-2017-5462 (DRBG leak)
-
Thu Mar 23 2017 Bob Relyea <rrelyea@redhat.com> - 3.28.3-4
- include new PKCS12 NSS specific mechanisms.
- alias CKM_TLS_KDF to CKM_TLS_MAC to preserve ABI
- add RSA PSS oid to decrypting PKCS #5 key blobs.
- move ec public key check from softokn to freebl so apps like Java can benefit.
-
Tue Mar 07 2017 Daiki Ueno <dueno@redhat.com> - 3.28.3-3
- Fix RSA-PSS corner case when the modulus is not of size multiple of 8
-
Mon Mar 06 2017 Daiki Ueno <dueno@redhat.com> - 3.28.3-2
- Update to NSS 3.28.3
- Remove upstreamed patches for the previous FIPS validation
- Package lowkeyi.h and lowkeyti.h in freebl-devel
- Pick up a patch in the Fedora package to fix build issue
-
Tue Jun 28 2016 Kai Engert <kaie@redhat.com> - 3.16.2.3-14.4
- escape all percent characters in all changelog comments
-
Wed Apr 20 2016 Elio Maldonado <emaldona@redhat.com> - 3.16.2.3-14.3
- Fix a flaw in %check for nss not building on arm
- Resolves: Bug 1200856
-
Fri Apr 15 2016 Kai Engert <kaie@redhat.com> - 3.16.2.3-14.2
- Adjust for a renamed variable in newer nss-util, require a compatible nss-util version.
-
Mon Apr 11 2016 Kai Engert <kaie@redhat.com> - 3.16.2.3-14.1
- Pick up a bugfix related to fork(), to avoid a regression with NSS 3.21
-
Fri Aug 07 2015 Elio Maldonado <emaldona@redhat.com> - 3.16.2.3-14
- Pick up upstream freebl patch for CVE-2015-2730
- Check for P == Q or P ==-Q before adding P and Q