1 | | New point version |
| 1 | New point version. |
| 2 | |
| 3 | [https://ftp.mozilla.org/pub/mozilla.org/security/nss/releases/NSS_3_19_2_RTM/src/nss-3.19.2.tar.gz] |
| 4 | |
| 5 | [https://ftp.mozilla.org/pub/mozilla.org/security/nss/releases/NSS_3_19_2_RTM/src/SHA256SUMS] |
| 6 | |
| 7 | 1306663e8f61d8449ad8cbcffab743a604dcd9f6f34232c210847c51dce2c9ae |
| 8 | |
| 9 | [https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.19.2_release_notes] |
| 10 | |
| 11 | {{{ |
| 12 | New in NSS 3.19.2 |
| 13 | |
| 14 | New Functionality |
| 15 | |
| 16 | No new functionality is introduced in this release. |
| 17 | |
| 18 | Notable Changes in NSS 3.19.2 |
| 19 | |
| 20 | • Bug 1172128 - In NSS 3.19.1, the minimum key sizes that the freebl |
| 21 | cryptographic implementation (part of the softoken cryptographic |
| 22 | module used by default by NSS) was willing to generate or use was |
| 23 | increased - for RSA keys, to 512 bits, and for DH keys, 1023 bits. |
| 24 | This was done as part of a security fix for Bug 1138554 / |
| 25 | CVE-2015-2721. Applications that requested or attempted to use keys |
| 26 | smaller then the minimum size would fail. However, this change in |
| 27 | behaviour unintentionally broke existing NSS applications that need |
| 28 | to generate or use such keys, via APIs such as |
| 29 | SECKEY_CreateRSAPrivateKey or SECKEY_CreateDHPrivateKey. |
| 30 | |
| 31 | In NSS 3.19.2, this change in freebl behaviour has been reverted. |
| 32 | The fix for Bug 1138554 has been moved to libssl, and will now only |
| 33 | affect the minimum keystrengths used in SSL/TLS. |
| 34 | |
| 35 | Note: Future versions of NSS may increase the minimum keysizes |
| 36 | required by the freebl module. Consumers of NSS are strongly |
| 37 | encouraged to migrate to stronger cryptographic strengths as soon as |
| 38 | possible. |
| 39 | }}} |
| 40 | |
| 41 | Bugs fixed in NSS 3.19.2 |
| 42 | |
| 43 | This Bugzilla query returns all the bugs fixed in NSS 3.19.2 |
| 44 | |
| 45 | [https://bugzilla.mozilla.org/buglist.cgi?resolution=FIXED&classification=Components&query_format=advanced&product=NSS&target_milestone=3.19.2] |