——————————————————————————–
Fedora Update Notification
FEDORA-2016-6aa4dd4f3a
2016-01-24 18:32:28.486161
——————————————————————————–

Name : mod_nss
Product : Fedora 22
Version : 1.0.11
Release : 6.fc22
URL : https://fedorahosted.org/mod_nss/
Summary : SSL/TLS module for the Apache HTTP server
Description :
The mod_nss module provides strong cryptography for the Apache Web
server via the Secure Sockets Layer (SSL) and Transport Layer
Security (TLS) protocols using the Network Security Services (NSS)
security library.

——————————————————————————–
Update Information:

Fix for CVE-2015-5244. An OpenSSL cipher string wasn’t disabled when prefixed
with !.
——————————————————————————–
References:

[ 1 ] Bug #1263070 – CVE-2015-5244 mod_nss: incorrect ciphersuite parsing [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1263070
——————————————————————————–

This update can be installed with the “yum” update program. Use
su -c ‘yum update mod_nss’ at the command line.
For more information, refer to “Managing Software with yum”,
available at https://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce