Viewing all changes in revision 40.
- Committer: Package Import Robot
- Date: 2013-01-10 16:41:16 UTC
- mfrom: (1.1.17)
- Revision ID: package-import@ubuntu.com-20130110164116-tmwuvw42ib60kwo3
* New upstream release. Dropped the following patches:
  - debian/patches/90_realpath.patch (included upstream)
  - debian/patches/91_build_pwdecrypt.patch (included upstream)
  - debian/patches/96_NSS_VersionCheck.patch (included upstream)
  - debian/patches/98_fix_header_error.patch (included upstream)
  - debian/patches/protect-against-calls-before-nss_init.patch (included
    upstream)
  - debian/patches/CVE-2012-0441.patch (included upstream)
*Â debian/patches/38_hurd.patch:Â refresh
* debian/patches/38_kbsd.patch: refresh/update based on Debian
*Â debian/patches/80_security_tools.patch:Â refresh
*Â debian/patches/85_security_load.patch:Â refresh
*Â debian/patches/95_add_spi+cacert_ca_certs.patch:Â updated
*Â debian/patches/97_SSL_RENEGOTIATE_TRANSITIONAL.patch:Â refresh
* debian/patches/lower-dhe-priority.patch: refresh/update based on Debian
* SECURITY UPDATE: distrust improperly issued TURKTRUST intermediate CAs
  - debian/patches/94_ckbi-1.9.patch: update to CKBI 1.93 by using
    mozilla/security/nss/lib/ckfw/builtins/certdata.txt from upstream and
    updating mozilla/security/nss/lib/ckfw/builtins/nssckbi.h. Apply this
    before 95_add_spi+cacert_ca_certs.patch since it keeps this patch clean
    and underscores that SPI and CACERT are not part of upstream Roots.
  - CVE-2013-0743
* debian/libnss3.symbols: add NSS_3.13.2, NSS_3.14, NSS_3.14.1, and
  NSSUTIL_3.14 symbols
  - debian/patches/90_realpath.patch (included upstream)
  - debian/patches/91_build_pwdecrypt.patch (included upstream)
  - debian/patches/96_NSS_VersionCheck.patch (included upstream)
  - debian/patches/98_fix_header_error.patch (included upstream)
  - debian/patches/protect-against-calls-before-nss_init.patch (included
    upstream)
  - debian/patches/CVE-2012-0441.patch (included upstream)
*Â debian/patches/38_hurd.patch:Â refresh
* debian/patches/38_kbsd.patch: refresh/update based on Debian
*Â debian/patches/80_security_tools.patch:Â refresh
*Â debian/patches/85_security_load.patch:Â refresh
*Â debian/patches/95_add_spi+cacert_ca_certs.patch:Â updated
*Â debian/patches/97_SSL_RENEGOTIATE_TRANSITIONAL.patch:Â refresh
* debian/patches/lower-dhe-priority.patch: refresh/update based on Debian
* SECURITY UPDATE: distrust improperly issued TURKTRUST intermediate CAs
  - debian/patches/94_ckbi-1.9.patch: update to CKBI 1.93 by using
    mozilla/security/nss/lib/ckfw/builtins/certdata.txt from upstream and
    updating mozilla/security/nss/lib/ckfw/builtins/nssckbi.h. Apply this
    before 95_add_spi+cacert_ca_certs.patch since it keeps this patch clean
    and underscores that SPI and CACERT are not part of upstream Roots.
  - CVE-2013-0743
* debian/libnss3.symbols: add NSS_3.13.2, NSS_3.14, NSS_3.14.1, and
  NSSUTIL_3.14 symbols
- files added:
- .pc/94_ckbi-1.93.patch
- .pc/94_ckbi-1.93.patch/mozilla
- .pc/94_ckbi-1.93.patch/mozilla/security
- .pc/94_ckbi-1.93.patch/mozilla/security/nss
- .pc/94_ckbi-1.93.patch/mozilla/security/nss/lib
- .pc/94_ckbi-1.93.patch/mozilla/security/nss/lib/ckfw
- .pc/94_ckbi-1.93.patch/mozilla/security/nss/lib/ckfw/builtins
- mozilla/security/nss/cmd/bltest/tests/aes_cts
- mozilla/security/nss/cmd/httpserv
- mozilla/security/nss/cmd/listsuites
- mozilla/security/nss/cmd/lowhashtest
- mozilla/security/nss/cmd/ocspresp
- mozilla/security/nss/cmd/pk1sign
- mozilla/security/nss/cmd/pkix-errcodes
- mozilla/security/nss/tests/lowhash
- files removed:
- .pc/90_realpath.patch
- .pc/90_realpath.patch/mozilla
- .pc/90_realpath.patch/mozilla/security
- .pc/90_realpath.patch/mozilla/security/nss
- .pc/90_realpath.patch/mozilla/security/nss/lib
- .pc/90_realpath.patch/mozilla/security/nss/lib/freebl
- .pc/91_build_pwdecrypt.patch
- .pc/91_build_pwdecrypt.patch/mozilla
- .pc/91_build_pwdecrypt.patch/mozilla/security
- .pc/91_build_pwdecrypt.patch/mozilla/security/nss
- .pc/91_build_pwdecrypt.patch/mozilla/security/nss/cmd
- .pc/96_NSS_VersionCheck.patch
- .pc/96_NSS_VersionCheck.patch/mozilla
- .pc/96_NSS_VersionCheck.patch/mozilla/security
- .pc/96_NSS_VersionCheck.patch/mozilla/security/nss
- .pc/96_NSS_VersionCheck.patch/mozilla/security/nss/lib
- .pc/96_NSS_VersionCheck.patch/mozilla/security/nss/lib/nss
- .pc/98_fix_header_error.patch
- .pc/98_fix_header_error.patch/mozilla
- .pc/98_fix_header_error.patch/mozilla/security
- .pc/98_fix_header_error.patch/mozilla/security/nss
- .pc/98_fix_header_error.patch/mozilla/security/nss/lib
- .pc/98_fix_header_error.patch/mozilla/security/nss/lib/util
- .pc/CVE-2012-0441.patch
- .pc/CVE-2012-0441.patch/mozilla
- .pc/CVE-2012-0441.patch/mozilla/security
- .pc/CVE-2012-0441.patch/mozilla/security/nss
- .pc/CVE-2012-0441.patch/mozilla/security/nss/lib
- .pc/CVE-2012-0441.patch/mozilla/security/nss/lib/softoken
- .pc/CVE-2012-0441.patch/mozilla/security/nss/lib/softoken/legacydb
- .pc/CVE-2012-0441.patch/mozilla/security/nss/lib/util
- .pc/protect-against-calls-before-nss_init.patch
- .pc/protect-against-calls-before-nss_init.patch/mozilla
- .pc/protect-against-calls-before-nss_init.patch/mozilla/security
- .pc/protect-against-calls-before-nss_init.patch/mozilla/security/nss
- .pc/protect-against-calls-before-nss_init.patch/mozilla/security/nss/lib
- .pc/protect-against-calls-before-nss_init.patch/mozilla/security/nss/lib/nss
- files modified:
- .pc/38_hurd.patch/mozilla/security/nss/cmd/shlibsign/shlibsign.c
expand all
collapse all
added
removed
