A nss and nspr security, bug fix, and enhancement update has been released for Oracle Linux 8.

El-errata: ELSA-2021-3572 Moderate: Oracle Linux 8 nss and nspr security, bug fix, and enhancement update

Oracle Linux Security Advisory ELSA-2021-3572

  http://linux.oracle.com/errata/ELSA-2021-3572.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
nspr-4.32.0-1.el8_4.i686.rpm
nspr-4.32.0-1.el8_4.x86_64.rpm
nspr-devel-4.32.0-1.el8_4.i686.rpm
nspr-devel-4.32.0-1.el8_4.x86_64.rpm
nss-3.67.0-6.el8_4.i686.rpm
nss-3.67.0-6.el8_4.x86_64.rpm
nss-devel-3.67.0-6.el8_4.i686.rpm
nss-devel-3.67.0-6.el8_4.x86_64.rpm
nss-softokn-3.67.0-6.el8_4.i686.rpm
nss-softokn-3.67.0-6.el8_4.x86_64.rpm
nss-softokn-devel-3.67.0-6.el8_4.i686.rpm
nss-softokn-devel-3.67.0-6.el8_4.x86_64.rpm
nss-softokn-freebl-3.67.0-6.el8_4.i686.rpm
nss-softokn-freebl-3.67.0-6.el8_4.x86_64.rpm
nss-softokn-freebl-devel-3.67.0-6.el8_4.i686.rpm
nss-softokn-freebl-devel-3.67.0-6.el8_4.x86_64.rpm
nss-sysinit-3.67.0-6.el8_4.x86_64.rpm
nss-tools-3.67.0-6.el8_4.x86_64.rpm
nss-util-3.67.0-6.el8_4.i686.rpm
nss-util-3.67.0-6.el8_4.x86_64.rpm
nss-util-devel-3.67.0-6.el8_4.i686.rpm
nss-util-devel-3.67.0-6.el8_4.x86_64.rpm

aarch64:
nspr-4.32.0-1.el8_4.aarch64.rpm
nspr-devel-4.32.0-1.el8_4.aarch64.rpm
nss-3.67.0-6.el8_4.aarch64.rpm
nss-devel-3.67.0-6.el8_4.aarch64.rpm
nss-softokn-3.67.0-6.el8_4.aarch64.rpm
nss-softokn-devel-3.67.0-6.el8_4.aarch64.rpm
nss-softokn-freebl-3.67.0-6.el8_4.aarch64.rpm
nss-softokn-freebl-devel-3.67.0-6.el8_4.aarch64.rpm
nss-sysinit-3.67.0-6.el8_4.aarch64.rpm
nss-tools-3.67.0-6.el8_4.aarch64.rpm
nss-util-3.67.0-6.el8_4.aarch64.rpm
nss-util-devel-3.67.0-6.el8_4.aarch64.rpm

SRPMS:
  http://oss.oracle.com/ol8/SRPMS-updates/nspr-4.32.0-1.el8_4.src.rpm
  http://oss.oracle.com/ol8/SRPMS-updates/nss-3.67.0-6.el8_4.src.rpm

Related CVEs:

CVE-2020-25648



Description of changes:

nspr
[4.32.0-1]
- Update to NSPR 4.32

[4.31.0-1]
- Update to NSPR 4.31

[4.30.0-1]
- Update to NSPR 4.30

nss
[3.67.0-6]
- Fix ssl alert issue

[3.67.0-5]
- Fix issue with reading databases that were updated using
unpatched versions of nss

[3.67.0-4]
- Better fix for the sdb timeout. The issue wasn't a race, it was
the sqlite timeout waiting to begin a transaction under heavy
thread usage.

[3.67.0-3]
- Fix sdb race condition

[3.67.0-2]
- Fix coverity issues

[3.67.0-1]
- Rebase to NSS 3.67

[3.66.0-2]
- Restore old pkcs12 defaults.

[3.66.0-1.1]
- build nss for older nspr so we can pass gating with
the new nspr in the build root

[3.66.0-1]
- Rebase to NSS 3.66