SUSE-RU-2015:0591-1

Source
https://www.suse.com/support/update/announcement/2015/suse-ru-20150591-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-RU-2015:0591-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-RU-2015:0591-1
Upstream
  • CVE-2013-4566
Related
  • CVE-2013-4566
Published
2014-08-22T11:39:07Z
Modified
2026-02-04T02:49:54.397269Z
Summary
Recommended update for apache2-mod_nss
Details

This update brings several improvements to apache2-mod_nss.

* 

  More TLS 1.2 ciphers have been added, including AES-GCM and Camelia
  ciphers. These can be selected by their tags:

      o rsa_aes_128_sha256
      o rsa_aes_128_gcm_sha
      o rsa_aes_256_sha256
      o rsa_camellia_128_sha
      o rsa_camellia_256_sha
      o ecdh_ecdsa_aes_128_gcm_sha
      o ecdhe_ecdsa_aes_128_sha256
      o ecdhe_ecdsa_aes_128_gcm_sha
      o ecdh_rsa_aes_128_gcm_sha
      o ecdhe_rsa_aes_128_sha256
* 

  The mod_nss.conf.in template was updated to include those ciphers.
  (bnc#863035)

* 

  VirtualHost settings in /etc/apache2/conf.d/mod_nss.conf is now
  externalized to /etc/apache2/vhosts.d/vhost-nss.template and not
  activated/read by default. (bnc#878681)

* 

  The Server Name Indication (SNI) extension was implemented.

* 

  Reading the pass phrase during start-up was improved. (bnc#863518)
References

Affected packages