Rapid7 Vulnerability & Exploit Database

ELSA-2013-0213 Important: Oracle Linux nss, nss-util, and nspr security, bug fix, and enhancement update

Back to Search

ELSA-2013-0213 Important: Oracle Linux nss, nss-util, and nspr security, bug fix, and enhancement update

Severity
4
CVSS
(AV:L/AC:M/Au:N/C:P/I:P/A:P)
Published
02/01/2013
Created
07/25/2018
Added
02/01/2013
Modified
07/04/2017

Description

Oracle Linux Security Advisory ELSA-2013-0213 https://rhn.redhat.com/errata/RHSA-2013-0213.html The following updated rpms for Oracle Linux 6 have been uploaded to the Unbreakable Linux Network: i386: nspr-4.9.2-0.el6_3.1.i686.rpm nspr-devel-4.9.2-0.el6_3.1.i686.rpm nss-3.13.6-2.0.1.el6_3.i686.rpm nss-devel-3.13.6-2.0.1.el6_3.i686.rpm nss-pkcs11-devel-3.13.6-2.0.1.el6_3.i686.rpm nss-sysinit-3.13.6-2.0.1.el6_3.i686.rpm nss-tools-3.13.6-2.0.1.el6_3.i686.rpm nss-util-3.13.6-1.el6_3.i686.rpm nss-util-devel-3.13.6-1.el6_3.i686.rpm x86_64: nspr-4.9.2-0.el6_3.1.i686.rpm nspr-4.9.2-0.el6_3.1.x86_64.rpm nspr-devel-4.9.2-0.el6_3.1.i686.rpm nspr-devel-4.9.2-0.el6_3.1.x86_64.rpm nss-3.13.6-2.0.1.el6_3.i686.rpm nss-3.13.6-2.0.1.el6_3.x86_64.rpm nss-devel-3.13.6-2.0.1.el6_3.i686.rpm nss-devel-3.13.6-2.0.1.el6_3.x86_64.rpm nss-pkcs11-devel-3.13.6-2.0.1.el6_3.i686.rpm nss-pkcs11-devel-3.13.6-2.0.1.el6_3.x86_64.rpm nss-sysinit-3.13.6-2.0.1.el6_3.x86_64.rpm nss-tools-3.13.6-2.0.1.el6_3.x86_64.rpm nss-util-3.13.6-1.el6_3.i686.rpm nss-util-3.13.6-1.el6_3.x86_64.rpm nss-util-devel-3.13.6-1.el6_3.i686.rpm nss-util-devel-3.13.6-1.el6_3.x86_64.rpm SRPMS: http://oss.oracle.com/ol6/SRPMS-updates/nspr-4.9.2-0.el6_3.1.src.rpm http://oss.oracle.com/ol6/SRPMS-updates/nss-3.13.6-2.0.1.el6_3.src.rpm http://oss.oracle.com/ol6/SRPMS-updates/nss-util-3.13.6-1.el6_3.src.rpm Description of changes: nspr [4.9.2-0.1] - Retagging to ensure n-v-r is lower than the one for rhel-6.4 - Resolves: rhbz#891661 - [RFE] Rebase nspr to 4.9.2 due to Firefox 17 ESR [4.9.2-1] - Resolves: rhbz#891661 - [RFE] Rebase nspr to 4.9.2 due to Firefox 17 ESR nss [3.13.6-2.0.1.el6_3] - Added nss-vendor.patch to change vendor [3.13.6-2] - Retagging for rhel-6.3 z-stream - Update to NSS_3_13_6_RTM - Resolves: rhbz#891663 - Update to 3.13.5 for mozilla 10.0.6 - Resolves: rhbz#891151 [CVE-2013-0743] [3.13.6-1] - Update to NSS_3_13_6_RTM - Resolves: rhbz#891663 - Update to 3.13.5 for mozilla 10.0.6 - Resolves: rhbz#891151 [CVE-2013-0743] nss-util [3.13.6-1] - Update to NSS_3_13_6_RTM - Resolves: rhbz#891670 - [RFE] Rebase to NSS-UTIL >= 3.13.6 [3.13.5-1] - Resolves: rhbz#833763 - Update to 3.13.5 for Mozilla 10.0.6

Solution(s)

  • oracle-linux-upgrade-nspr
  • oracle-linux-upgrade-nspr-devel
  • oracle-linux-upgrade-nss
  • oracle-linux-upgrade-nss-devel
  • oracle-linux-upgrade-nss-pkcs11-devel
  • oracle-linux-upgrade-nss-sysinit
  • oracle-linux-upgrade-nss-tools
  • oracle-linux-upgrade-nss-util
  • oracle-linux-upgrade-nss-util-devel

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;