Recommended update for apache2-mod_nss
Announcement ID: | SUSE-RU-2015:1780-1 |
Rating: | moderate |
References: | #921182 #927402 #928039 #930186 #930922 #933265 #933832 |
Affected Products: |
An update that has 7 recommended fixes can now be installed.
Description:
The apache2 mod_nss module was updated to fix various bugs.
* The default cipher list in the config template was updated and some less
secure ciphers removed. (bsc#928039)
* Various improvements and bugfixes to Server Name Indication (SNI)
support were done, fixing bugs on machines with multiple vhosts and
similar. (bnc#927402, bsc#927402, bsc#928039, bsc#930922, bsc#930186)
* Added an alert about incorrect permissions on the certificate database
(bsc#933265)
* Send TLS server name extension on proxy connections (bsc#933832)
* Removed the currently unsupported cipher ecdhe_rsa_aes_256_sha256 from
the sample config (bsc#921182)
Patch Instructions:
To install this SUSE Recommended Update use YaST online_update.
Alternatively you can run the command listed for your product:
- SUSE Linux Enterprise Server for VMWare 11-SP3:
zypper in -t patch slessp3-apache2-mod_nss-12143=1
- SUSE Linux Enterprise Server 11-SP4:
zypper in -t patch slessp4-apache2-mod_nss-12143=1
- SUSE Linux Enterprise Server 11-SP3:
zypper in -t patch slessp3-apache2-mod_nss-12143=1
- SUSE Linux Enterprise Debuginfo 11-SP4:
zypper in -t patch dbgsp4-apache2-mod_nss-12143=1
- SUSE Linux Enterprise Debuginfo 11-SP3:
zypper in -t patch dbgsp3-apache2-mod_nss-12143=1
To bring your system up-to-date, use "zypper patch".
Package List:
- SUSE Linux Enterprise Server for VMWare 11-SP3 (i586 x86_64):
- apache2-mod_nss-1.0.8-0.4.19.1
- SUSE Linux Enterprise Server 11-SP4 (i586 ia64 ppc64 s390x x86_64):
- apache2-mod_nss-1.0.8-0.4.19.1
- SUSE Linux Enterprise Server 11-SP3 (i586 ia64 ppc64 s390x x86_64):
- apache2-mod_nss-1.0.8-0.4.19.1
- SUSE Linux Enterprise Debuginfo 11-SP4 (i586 ia64 ppc64 s390x x86_64):
- apache2-mod_nss-debuginfo-1.0.8-0.4.19.1
- apache2-mod_nss-debugsource-1.0.8-0.4.19.1
- SUSE Linux Enterprise Debuginfo 11-SP3 (i586 ia64 ppc64 s390x x86_64):
- apache2-mod_nss-debuginfo-1.0.8-0.4.19.1
- apache2-mod_nss-debugsource-1.0.8-0.4.19.1