Protect yourself against future threats.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2015.2213 Moderate: nss security, bug fix, and enhancement update 25 August 2015 =========================================================================== AusCERT Security Bulletin Summary --------------------------------- Product: nss Publisher: Red Hat Operating System: Red Hat Enterprise Linux Server 5 Red Hat Enterprise Linux WS/Desktop 5 Impact/Access: Provide Misleading Information -- Remote with User Interaction Unauthorised Access -- Remote with User Interaction Resolution: Patch/Upgrade CVE Names: CVE-2015-2730 CVE-2015-2721 Reference: ASB-2015.0066 ESB-2015.2142 ESB-2015.2003 Original Bulletin: https://rhn.redhat.com/errata/RHSA-2015-1664.html - --------------------------BEGIN INCLUDED TEXT-------------------- - -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ===================================================================== Red Hat Security Advisory Synopsis: Moderate: nss security, bug fix, and enhancement update Advisory ID: RHSA-2015:1664-01 Product: Red Hat Enterprise Linux Advisory URL: https://rhn.redhat.com/errata/RHSA-2015-1664.html Issue date: 2015-08-24 CVE Names: CVE-2015-2721 CVE-2015-2730 ===================================================================== 1. Summary: Updated nss packages that fix two security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. 2. Relevant releases/architectures: RHEL Desktop Workstation (v. 5 client) - i386, x86_64 Red Hat Enterprise Linux (v. 5 server) - i386, ia64, ppc, s390x, x86_64 Red Hat Enterprise Linux Desktop (v. 5 client) - i386, x86_64 3. Description: Network Security Services (NSS) is a set of libraries designed to support cross-platform development of security-enabled client and server applications. It was found that NSS permitted skipping of the ServerKeyExchange packet during a handshake involving ECDHE (Elliptic Curve Diffie-Hellman key Exchange). A remote attacker could use this flaw to bypass the forward-secrecy of a TLS/SSL connection. (CVE-2015-2721) A flaw was found in the way NSS verified certain ECDSA (Elliptic Curve Digital Signature Algorithm) signatures. Under certain conditions, an attacker could use this flaw to conduct signature forgery attacks. (CVE-2015-2730) Red Hat would like to thank the Mozilla project for reporting this issue. Upstream acknowledges Karthikeyan Bhargavan as the original reporter of CVE-2015-2721, and Watson Ladd as the original reporter of CVE-2015-2730. The nss packages have been upgraded to upstream version 3.19.1, which provides a number of bug fixes and enhancements over the previous version. All nss users are advised to upgrade to these updated packages, which correct these issues. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1236954 - CVE-2015-2730 NSS: ECDSA signature validation fails to handle some signatures correctly (MFSA 2015-64) 1236967 - CVE-2015-2721 NSS: incorrectly permited skipping of ServerKeyExchange (MFSA 2015-71) 6. Package List: Red Hat Enterprise Linux Desktop (v. 5 client): Source: nss-3.19.1-1.el5_11.src.rpm i386: nss-3.19.1-1.el5_11.i386.rpm nss-debuginfo-3.19.1-1.el5_11.i386.rpm nss-tools-3.19.1-1.el5_11.i386.rpm x86_64: nss-3.19.1-1.el5_11.i386.rpm nss-3.19.1-1.el5_11.x86_64.rpm nss-debuginfo-3.19.1-1.el5_11.i386.rpm nss-debuginfo-3.19.1-1.el5_11.x86_64.rpm nss-tools-3.19.1-1.el5_11.x86_64.rpm RHEL Desktop Workstation (v. 5 client): Source: nss-3.19.1-1.el5_11.src.rpm i386: nss-debuginfo-3.19.1-1.el5_11.i386.rpm nss-devel-3.19.1-1.el5_11.i386.rpm nss-pkcs11-devel-3.19.1-1.el5_11.i386.rpm x86_64: nss-debuginfo-3.19.1-1.el5_11.i386.rpm nss-debuginfo-3.19.1-1.el5_11.x86_64.rpm nss-devel-3.19.1-1.el5_11.i386.rpm nss-devel-3.19.1-1.el5_11.x86_64.rpm nss-pkcs11-devel-3.19.1-1.el5_11.i386.rpm nss-pkcs11-devel-3.19.1-1.el5_11.x86_64.rpm Red Hat Enterprise Linux (v. 5 server): Source: nss-3.19.1-1.el5_11.src.rpm i386: nss-3.19.1-1.el5_11.i386.rpm nss-debuginfo-3.19.1-1.el5_11.i386.rpm nss-devel-3.19.1-1.el5_11.i386.rpm nss-pkcs11-devel-3.19.1-1.el5_11.i386.rpm nss-tools-3.19.1-1.el5_11.i386.rpm ia64: nss-3.19.1-1.el5_11.i386.rpm nss-3.19.1-1.el5_11.ia64.rpm nss-debuginfo-3.19.1-1.el5_11.i386.rpm nss-debuginfo-3.19.1-1.el5_11.ia64.rpm nss-devel-3.19.1-1.el5_11.ia64.rpm nss-pkcs11-devel-3.19.1-1.el5_11.ia64.rpm nss-tools-3.19.1-1.el5_11.ia64.rpm ppc: nss-3.19.1-1.el5_11.ppc.rpm nss-3.19.1-1.el5_11.ppc64.rpm nss-debuginfo-3.19.1-1.el5_11.ppc.rpm nss-debuginfo-3.19.1-1.el5_11.ppc64.rpm nss-devel-3.19.1-1.el5_11.ppc.rpm nss-devel-3.19.1-1.el5_11.ppc64.rpm nss-pkcs11-devel-3.19.1-1.el5_11.ppc.rpm nss-pkcs11-devel-3.19.1-1.el5_11.ppc64.rpm nss-tools-3.19.1-1.el5_11.ppc.rpm s390x: nss-3.19.1-1.el5_11.s390.rpm nss-3.19.1-1.el5_11.s390x.rpm nss-debuginfo-3.19.1-1.el5_11.s390.rpm nss-debuginfo-3.19.1-1.el5_11.s390x.rpm nss-devel-3.19.1-1.el5_11.s390.rpm nss-devel-3.19.1-1.el5_11.s390x.rpm nss-pkcs11-devel-3.19.1-1.el5_11.s390.rpm nss-pkcs11-devel-3.19.1-1.el5_11.s390x.rpm nss-tools-3.19.1-1.el5_11.s390x.rpm x86_64: nss-3.19.1-1.el5_11.i386.rpm nss-3.19.1-1.el5_11.x86_64.rpm nss-debuginfo-3.19.1-1.el5_11.i386.rpm nss-debuginfo-3.19.1-1.el5_11.x86_64.rpm nss-devel-3.19.1-1.el5_11.i386.rpm nss-devel-3.19.1-1.el5_11.x86_64.rpm nss-pkcs11-devel-3.19.1-1.el5_11.i386.rpm nss-pkcs11-devel-3.19.1-1.el5_11.x86_64.rpm nss-tools-3.19.1-1.el5_11.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2015-2721 https://access.redhat.com/security/cve/CVE-2015-2730 https://access.redhat.com/security/updates/classification/#moderate https://www.mozilla.org/security/announce/2015/mfsa2015-64.html https://www.mozilla.org/security/announce/2015/mfsa2015-71.html 8. Contact: The Red Hat security contact is <secalert@redhat.com>. More contact details at https://access.redhat.com/security/team/contact/ Copyright 2015 Red Hat, Inc. - -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iD8DBQFV22awXlSAg2UNWIIRAoBhAJ0S2lsK99aU0Ooky0MT8PciFseXdgCeLUSs Crj+GQu6Hf1ciVbvOqH5QWI= =VSBH - -----END PGP SIGNATURE----- - --------------------------END INCLUDED TEXT-------------------- You have received this e-mail bulletin as a result of your organisation's registration with AusCERT. The mailing list you are subscribed to is maintained within your organisation, so if you do not wish to continue receiving these bulletins you should contact your local IT manager. If you do not know who that is, please send an email to auscert@auscert.org.au and we will forward your request to the appropriate person. NOTE: Third Party Rights This security bulletin is provided as a service to AusCERT's members. As AusCERT did not write the document quoted above, AusCERT has had no control over its content. The decision to follow or act on information or advice contained in this security bulletin is the responsibility of each user or organisation, and should be considered in accordance with your organisation's site policies and procedures. AusCERT takes no responsibility for consequences which may arise from following or acting on information or advice contained in this security bulletin. NOTE: This is only the original release of the security bulletin. It may not be updated when updates to the original are made. If downloading at a later date, it is recommended that the bulletin is retrieved directly from the author's website to ensure that the information is still current. Contact information for the authors of the original document is included in the Security Bulletin above. If you have any questions or need further information, please contact them directly. Previous advisories and external security bulletins can be retrieved from: http://www.auscert.org.au/render.html?cid=1980 =========================================================================== Australian Computer Emergency Response Team The University of Queensland Brisbane Qld 4072 Internet Email: auscert@auscert.org.au Facsimile: (07) 3365 7031 Telephone: (07) 3365 4417 (International: +61 7 3365 4417) AusCERT personnel answer during Queensland business hours which are GMT+10:00 (AEST). On call after hours for member emergencies only. =========================================================================== -----BEGIN PGP SIGNATURE----- Comment: http://www.auscert.org.au/render.html?it=1967 iQIVAwUBVdu0hH6ZAP0PgtI9AQKBWxAAz7UfxHczzoYIA9Ku0/RVcKuiWXzOXfJg hE2kjNsZ82GMKvHZARfGjq9uluQ/ZiY+DAEHzN0x4M/MbTBuP7DyLZgD+OV88mdq EuNvczTV3PxZkZKkFjJXkIYh185eVvG7VwBrXHzteoqlPNdOge7Bgm3KzxzeTfUI LQ2JR/o5x5QMPM3+YTUX3hSNL8bquR9BNS+FCDWfHR72MN2qrjMqtNYRmD9ClkRw LtbnxZnMqN7aXYCiIyfU2fcnBEuwQHfcoznS78gyjNRojTGuTwNy9Xufii9EZT76 5SPex68BovAVgLzd+QFvsVgHfAhRDYqFZ47g7xRnx70ronMYedJ5ifU+QRz/vrak n/hIOUuGFK4z/Yu9tJTkLjEezKHO9B/lY7Ufz5kmnSD7oSukBEZRveZp/tlcWEAy E4wW1NSY7a88ENZqzkeA4C0wqnP0wiwJLffJbuX2eqJYNJ+c3lTKwT2CuhMGKyGg PeRYOu+9aUC0ttzTG3CSk8Tk4kgVJpvrA7j2wT1DoWZEwfPjSzvX/R/E0xig2CnM LnNJI7OzS4Brx8657JVbn1i6NVXK8mhvGQr+EIV9P633cDHQWBXzO5FcxKI60dx0 Rw++Vdc2YWxI1FaKLA3fU3XbemX6lWzG8VRcy2bTQBLthCWTOJXj5wtsrWsrwEiZ h9UC+yDGdbo= =Bkn4 -----END PGP SIGNATURE-----