News for package nss

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 3.0 (quilt)
Source: nss
Binary: libnss3, libnss3-tools, libnss3-dev, libnss3-dbg
Architecture: any
Version: 2:3.26.2-1.1+deb9u1
Maintainer: Maintainers of Mozilla-related packages <pkg-mozilla-maintainers@lists.alioth.debian.org>
Uploaders: Mike Hommey <glandium@debian.org>
Homepage: http://www.mozilla.org/projects/security/pki/nss/
Standards-Version: 3.9.6.0
Vcs-Browser: https://anonscm.debian.org/cgit/pkg-mozilla/nss.git
Vcs-Git: https://anonscm.debian.org/git/pkg-mozilla/nss.git
Build-Depends: debhelper (>= 9.20160403), dpkg-dev (>= 1.17.14), libnspr4-dev (>= 2:4.12), zlib1g-dev, libsqlite3-dev (>= 3.3.9), libnss3-tools:native (>= 2:3.19-1-1~) <cross>
Package-List:
 libnss3 deb libs optional arch=any
 libnss3-dbg deb debug extra arch=any
 libnss3-dev deb libdevel optional arch=any
 libnss3-tools deb admin optional arch=any
Checksums-Sha1:
 40c178e9aa416b76c169a1f425d4852d56fa1232 7388390 nss_3.26.2.orig.tar.gz
 1c0faa2268f2da428521a26dc9d22ad8051ac067 30820 nss_3.26.2-1.1+deb9u1.debian.tar.xz
Checksums-Sha256:
 13a40a2f97edf5fab3d4c7fdd928e77df36dc539cd8354b6b5d79ab93a131a5a 7388390 nss_3.26.2.orig.tar.gz
 f87d64233afcbb25bf9253064a1508c3adf49f01ed6068d4968231d09ff0d87c 30820 nss_3.26.2-1.1+deb9u1.debian.tar.xz
Files:
 643b46c81a1235a81459d853a084e401 7388390 nss_3.26.2.orig.tar.gz
 5af0c85173f0931b81636f809b7748c9 30820 nss_3.26.2-1.1+deb9u1.debian.tar.xz

-----BEGIN PGP SIGNATURE-----
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=IGei
-----END PGP SIGNATURE-----

<span id="changes">Changes:</span>
nss (2:3.26.2-1.1+deb9u1) stretch-security; urgency=high

  * Non-maintainer upload by the Security Team.
  * CVE-2017-7805: Potential use-after-free in TLS 1.2 server when verifying
    client authentication

 -- Salvatore Bonaccorso <carnil@debian.org>  Sat, 07 Oct 2017 17:32:51 +0200