Details: It was discovered that NSS incorrectly handled certain invalid Diffie-Hellman keys. A remote attacker could possibly use this flaw to cause NSS to crash, resulting in a denial of service. (CVE-2016-5285) Hubert Kario discovered that NSS incorrectly handled Diffie Hellman client key exchanges. A remote attacker could possibly use this flaw to perform a small subgroup confinement attack and recover private keys. (CVE-2016-8635) Franziskus Kiefer discovered that NSS incorrectly mitigated certain timing side-channel attacks. A remote attacker could possibly use this flaw to recover private keys. (CVE-2016-9074)
CVE-2016-5285: Upstream fixed this issue via https://hg.mozilla.org/projects/nss/rev/45c047d18ac4 (see upstream's bug from commit message). This changeset is present in 3.21.3 release: $ hg log -r "45c047d18ac4:: and tag()" changeset: 12729:ee067d70a228 branch: NSS_3_21_BRANCH tag: NSS_3_21_3_RTM parent: 12726:a9cb2d41c54f user: Kai Engert <kaie@kuix.de> date: Mon Oct 17 20:24:18 2016 +0200 summary: set version numbers to 3.21.3 release which never materialized according to https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_Releases While one would assume the changes are present in following versions like 3.22, 3.23 ... branch as well I was unable to locate the fixed code in our currently stable =dev-libs/nss-3.22.2 and =dev-libs/nss-3.23 version. In 3.27 upstream worked on TLS 1.3 support and has rewritten affected function. However, the change (=to make sure that "rv" is set to "SECFailure") is present in in =dev-libs/nss-3.27.2. CVE-2016-8635: Upstream fix: https://hg.mozilla.org/projects/nss/rev/95bb47ef808b Present in currently p.masked =dev-libs/nss-3.28 only. CVE-2016-9074: Upstream fix: https://hg.mozilla.org/projects/nss/rev/d38536fcc726 Present in currently p.masked =dev-libs/nss-3.28 only.
Please bring in archs we are going with 3.28.1 thank you.
@ Maintainer(s): Thank you for the bumps! @ Arches, please test and mark stable: =dev-libs/nss-3.28.1
(In reply to Thomas Deutschmann from comment #3) > @ Maintainer(s): Thank you for the bumps! > > > @ Arches, > > please test and mark stable: =dev-libs/nss-3.28.1 Please also mark stable: =dev-libs/nspr-4.13.1
amd64 stable
x86 stable
sparc stable
arm stable
ppc stable
Stable for HPPA.
Stable on alpha.
I need this stabilised on ppc64 in order to fix bug #605430. icedtea-bin seems to encounter some breakage when built against 3.27 but run against 3.28.
ia64 stable
ppc64 stable. Maintainer(s), please cleanup. Security, please add it to the existing request, or file a new one.
GLSA request filed.
This issue was resolved and addressed in GLSA 201701-46 at https://security.gentoo.org/glsa/201701-46 by GLSA coordinator Thomas Deutschmann (whissi).
