SUSE-RU-2025:20174-1: moderate: Recommended update for mozilla-nss
SLE-UPDATES
null at suse.de
Wed Jun 4 08:25:26 UTC 2025
# Recommended update for mozilla-nss
Announcement ID: SUSE-RU-2025:20174-1
Release Date: 2025-04-02T14:18:25Z
Rating: moderate
References:
* bsc#1222834
* bsc#1224113
Affected Products:
* SUSE Linux Micro 6.0
An update that has two fixes can now be installed.
## Description:
This update for mozilla-nss fixes the following issues:
* FIPS: Do not pass in bad targetKeyLength parameters when checking for FIPS
approval after keygen. This was causing false rejections.
* FIPS: Approve RSA signature verification mechanisms with PKCS padding and
legacy moduli (bsc#1222834).
* FIPS: enforce approved curves with the CKK_EC_MONTGOMERY key type
(bsc#1224113).
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* SUSE Linux Micro 6.0
zypper in -t patch SUSE-SLE-Micro-6.0-269=1
## Package List:
* SUSE Linux Micro 6.0 (aarch64 s390x x86_64)
* libfreebl3-debuginfo-3.101.2-2.1
* mozilla-nss-tools-debuginfo-3.101.2-2.1
* mozilla-nss-certs-debuginfo-3.101.2-2.1
* libsoftokn3-debuginfo-3.101.2-2.1
* mozilla-nss-debugsource-3.101.2-2.1
* mozilla-nss-tools-3.101.2-2.1
* libfreebl3-3.101.2-2.1
* mozilla-nss-3.101.2-2.1
* libsoftokn3-3.101.2-2.1
* mozilla-nss-certs-3.101.2-2.1
* mozilla-nss-debuginfo-3.101.2-2.1
## References:
* https://bugzilla.suse.com/show_bug.cgi?id=1222834
* https://bugzilla.suse.com/show_bug.cgi?id=1224113
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.suse.com/pipermail/sle-updates/attachments/20250604/7c1b1cbb/attachment.htm>
More information about the sle-updates
mailing list