- Issued:
- 2012-09-12
- Updated:
- 2012-09-12
RHBA-2012:1260 - mod_nss bug fix update
Synopsis
mod_nss bug fix update
Type/Severity
Bug Fix Advisory
Topic
Updated mod_nss packages that fix a bug are now available for Red Hat Enterprise Linux 5.
Description
The mod_nss module provides strong cryptography for the Apache HTTP Server via the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols, using the Network Security Services (NSS) security library.
This update fixes the following bug:
-
Due to a regression, the mod_proxy module no longer worked when configured to support SSL reverse proxy operation. The following error message was logged:
[error] SSL Proxy: I don't have the name of the host we're supposed to connect to so I can't verify that we are connecting to who we think we should be. Giving up.
A new patch has been applied and the mod_proxy module now works correctly to support SSL reverse proxy. (BZ#849044)
All users of mod_nss are advised to upgrade to these updated packages, which fix this bug.
Solution
Before applying this update, make sure all previously-released errata relevant to your system have been applied.
This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/knowledge/articles/11258
Affected Products
| Product | Version | Arch |
|---|---|---|
| Red Hat Enterprise Linux for Power, big endian | 5 | ppc |
| Red Hat Enterprise Linux for IBM z Systems | 5 | s390x |
| Red Hat Enterprise Linux Workstation | 5 | x86_64 |
| Red Hat Enterprise Linux Workstation | 5 | i386 |
| Red Hat Enterprise Linux Server | 5 | x86_64 |
| Red Hat Enterprise Linux Server | 5 | ia64 |
| Red Hat Enterprise Linux Server | 5 | i386 |
| Red Hat Enterprise Linux Server from RHUI | 5 | x86_64 |
| Red Hat Enterprise Linux Server from RHUI | 5 | i386 |
| Red Hat Enterprise Linux Desktop | 5 | x86_64 |
| Red Hat Enterprise Linux Desktop | 5 | i386 |
Updated Packages
- mod_nss-debuginfo-1.0.8-4.el5_8.2.x86_64.rpm
- mod_nss-1.0.8-4.el5_8.2.src.rpm
- mod_nss-1.0.8-4.el5_8.2.i386.rpm
- mod_nss-1.0.8-4.el5_8.2.ppc.rpm
- mod_nss-1.0.8-4.el5_8.2.s390x.rpm
- mod_nss-debuginfo-1.0.8-4.el5_8.2.ppc.rpm
- mod_nss-1.0.8-4.el5_8.2.ia64.rpm
- mod_nss-1.0.8-4.el5_8.2.x86_64.rpm
- mod_nss-debuginfo-1.0.8-4.el5_8.2.i386.rpm
- mod_nss-debuginfo-1.0.8-4.el5_8.2.s390x.rpm
- mod_nss-debuginfo-1.0.8-4.el5_8.2.ia64.rpm
Fixes
(none)
CVEs
(none)
References
(none)
Additional information
- The Red Hat security contact is This content is not included.secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.
- Offline Security Data data is available for integration with other systems. See Offline Security Data API to get started.