SUSE-RU-2015:1780-1: moderate: Recommended update for apache2-mod_nss
sle-updates at lists.suse.com
sle-updates at lists.suse.com
Mon Oct 19 10:09:48 MDT 2015
SUSE Recommended Update: Recommended update for apache2-mod_nss
______________________________________________________________________________
Announcement ID: SUSE-RU-2015:1780-1
Rating: moderate
References: #921182 #927402 #928039 #930186 #930922 #933265
#933832
Affected Products:
SUSE Linux Enterprise Server for VMWare 11-SP3
SUSE Linux Enterprise Server 11-SP4
SUSE Linux Enterprise Server 11-SP3
SUSE Linux Enterprise Debuginfo 11-SP4
SUSE Linux Enterprise Debuginfo 11-SP3
______________________________________________________________________________
An update that has 7 recommended fixes can now be installed.
Description:
The apache2 mod_nss module was updated to fix various bugs.
* The default cipher list in the config template was updated and some less
secure ciphers removed. (bsc#928039)
* Various improvements and bugfixes to Server Name Indication (SNI)
support were done, fixing bugs on machines with multiple vhosts and
similar. (bnc#927402, bsc#927402, bsc#928039, bsc#930922, bsc#930186)
* Added an alert about incorrect permissions on the certificate database
(bsc#933265)
* Send TLS server name extension on proxy connections (bsc#933832)
* Removed the currently unsupported cipher ecdhe_rsa_aes_256_sha256 from
the sample config (bsc#921182)
Patch Instructions:
To install this SUSE Recommended Update use YaST online_update.
Alternatively you can run the command listed for your product:
- SUSE Linux Enterprise Server for VMWare 11-SP3:
zypper in -t patch slessp3-apache2-mod_nss-12143=1
- SUSE Linux Enterprise Server 11-SP4:
zypper in -t patch slessp4-apache2-mod_nss-12143=1
- SUSE Linux Enterprise Server 11-SP3:
zypper in -t patch slessp3-apache2-mod_nss-12143=1
- SUSE Linux Enterprise Debuginfo 11-SP4:
zypper in -t patch dbgsp4-apache2-mod_nss-12143=1
- SUSE Linux Enterprise Debuginfo 11-SP3:
zypper in -t patch dbgsp3-apache2-mod_nss-12143=1
To bring your system up-to-date, use "zypper patch".
Package List:
- SUSE Linux Enterprise Server for VMWare 11-SP3 (i586 x86_64):
apache2-mod_nss-1.0.8-0.4.19.1
- SUSE Linux Enterprise Server 11-SP4 (i586 ia64 ppc64 s390x x86_64):
apache2-mod_nss-1.0.8-0.4.19.1
- SUSE Linux Enterprise Server 11-SP3 (i586 ia64 ppc64 s390x x86_64):
apache2-mod_nss-1.0.8-0.4.19.1
- SUSE Linux Enterprise Debuginfo 11-SP4 (i586 ia64 ppc64 s390x x86_64):
apache2-mod_nss-debuginfo-1.0.8-0.4.19.1
apache2-mod_nss-debugsource-1.0.8-0.4.19.1
- SUSE Linux Enterprise Debuginfo 11-SP3 (i586 ia64 ppc64 s390x x86_64):
apache2-mod_nss-debuginfo-1.0.8-0.4.19.1
apache2-mod_nss-debugsource-1.0.8-0.4.19.1
References:
https://bugzilla.suse.com/921182
https://bugzilla.suse.com/927402
https://bugzilla.suse.com/928039
https://bugzilla.suse.com/930186
https://bugzilla.suse.com/930922
https://bugzilla.suse.com/933265
https://bugzilla.suse.com/933832
More information about the sle-updates
mailing list