SuSE 11.1 Security Update : libfreebl3 (SAT Patch Number 5138)

High Nessus Plugin ID 57122


The remote SuSE 11 host is missing one or more security updates.


This update updates Mozilla NSS to 3.12.11.

The update marks the compromised DigiNotar Certificate Authority as untrusted

For more information read :

MFSA 2011-34

- update to 3.12.10

- root CA changes

- filter certain bogus certs (bmo#642815)

- fix minor memory leaks

- other bugfixes

- update to 3.12.9

- fix minor memory leaks (bmo#619268)

- fix crash in nss_cms_decoder_work_data (bmo#607058)

- fix crash in certutil (bmo#620908)

- handle invalid argument in JPAKE (bmo#609068)

- J-PAKE support (API requirement for Firefox >= 4.0b8)

- replaced expired PayPal test certificate (fixing testsuite)

- removed DigiNotar root certifiate from trusted db (bmo#682927) This update also brings the prerequired Mozilla NSPR to version 4.8.9.

- update to 4.8.9

- update to 4.8.8

- support IPv6 on Android (bmo#626866)

- use AI_ADDRCONFIG for loopback hostnames (bmo#614526)

- support SDP sockets (bmo#518078)

- support m32r architecture (bmo#635667)

- use atomic functions on ARM (bmo#626309)

- some other fixes not affecting the Linux platform


Apply SAT patch number 5138.

See Also

Plugin Details

Severity: High

ID: 57122

File Name: suse_11_nss-31211-110905.nasl

Version: $Revision: 1.3 $

Type: local

Agent: unix

Published: 2011/12/13

Modified: 2013/10/25

Dependencies: 12634

Risk Information

Risk Factor: High

Vulnerability Information

CPE: p-cpe:/a:novell:suse_linux:11:libfreebl3, p-cpe:/a:novell:suse_linux:11:libfreebl3-32bit, p-cpe:/a:novell:suse_linux:11:mozilla-nspr, p-cpe:/a:novell:suse_linux:11:mozilla-nspr-32bit, p-cpe:/a:novell:suse_linux:11:mozilla-nss, p-cpe:/a:novell:suse_linux:11:mozilla-nss-32bit, p-cpe:/a:novell:suse_linux:11:mozilla-nss-tools, cpe:/o:novell:suse_linux:11

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Patch Publication Date: 2011/09/05