Ubuntu Security Notice 2350-1 - The NSS package contained outdated CA certificates. This update refreshes the NSS package to version 3.17 which includes the latest CA certificate bundle.
359eef1863967a3b5b7f8d6b8420e45720f540fd85d506dbfbaf0f294396fdda
============================================================================
Ubuntu Security Notice USN-2350-1
September 22, 2014
nss update
============================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 14.04 LTS
- Ubuntu 12.04 LTS
- Ubuntu 10.04 LTS
Summary:
NSS was updated to refresh the CA certificates bundle.
Software Description:
- nss: Network Security Service library
Details:
The NSS package contained outdated CA certificates. This update refreshes
the NSS package to version 3.17 which includes the latest CA certificate
bundle.
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 14.04 LTS:
libnss3 2:3.17-0ubuntu0.14.04.1
Ubuntu 12.04 LTS:
libnss3 3.17-0ubuntu0.12.04.1
Ubuntu 10.04 LTS:
libnss3-1d 3.17-0ubuntu0.10.04.1
This update uses a new upstream release, which includes additional bug
fixes. After a standard system update you need to restart any applications
that use NSS, such as Evolution and Chromium, to make all the necessary
changes.
References:
http://www.ubuntu.com/usn/usn-2350-1
https://launchpad.net/bugs/1372410
Package Information:
https://launchpad.net/ubuntu/+source/nss/2:3.17-0ubuntu0.14.04.1
https://launchpad.net/ubuntu/+source/nss/3.17-0ubuntu0.12.04.1
https://launchpad.net/ubuntu/+source/nss/3.17-0ubuntu0.10.04.1