Recommended update for apache2-mod_nss

SUSE Recommended Update: Recommended update for apache2-mod_nss
Announcement ID: SUSE-RU-2016:1257-1
Rating: low
References: #952691 #954447 #961907
Affected Products:
  • SUSE Linux Enterprise Server 12

  • An update that has three recommended fixes can now be installed.

    Description:


    This update for apache2-mod_nss fixes the following issues:

    - Add more ciphers to mod_nss.conf.in: (bsc#952691)
    * ecdhe_rsa_aes_128_sha256
    * rsa_aes_128_sha256
    * rsa_aes_256_sha256

    - Add support for DHE ciphers: (bsc#954447)
    * dhe_rsa_3des_sha
    * dhe_rsa_aes_128_sha
    * dhe_rsa_aes_256_sha
    * dhe_rsa_camellia_128_sha
    * dhe_rsa_camellia_256_sha
    * dhe_rsa_aes_128_sha_256
    * dhe_rsa_aes_256_sha_256
    * dhe_rsa_aes_128_gcm_sha_256

    - Use whitelist for keeping directives in migrate.pl. (bsc#961907)

    Patch Instructions:

    To install this SUSE Recommended Update use YaST online_update.
    Alternatively you can run the command listed for your product:

    • SUSE Linux Enterprise Server 12:
      zypper in -t patch SUSE-SLE-SERVER-12-2016-730=1

    To bring your system up-to-date, use "zypper patch".

    Package List:

    • SUSE Linux Enterprise Server 12 (ppc64le s390x x86_64):
      • apache2-mod_nss-1.0.8-10.11.1
      • apache2-mod_nss-debuginfo-1.0.8-10.11.1
      • apache2-mod_nss-debugsource-1.0.8-10.11.1

    References: