diff --git a/openldap-cve-nss-cipher-suite-ignored.patch b/openldap-cve-nss-cipher-suite-ignored.patch new file mode 100644 index 0000000..89838f2 --- /dev/null +++ b/openldap-cve-nss-cipher-suite-ignored.patch @@ -0,0 +1,27 @@ +MozNSS: cipher suite selection by name may be ignored + +Author: Tim Strobell +Upstream ITS: #7289 +Upstream commit: 4b6bd2c600a79960409499f43a818aa0ca9fe463 +Resolves: #825875 (CVE-2012-2668) + +--- + libraries/libldap/tls_m.c | 2 +- + 1 file changed, 1 insertion(+), 1 deletion(-) + +diff --git a/libraries/libldap/tls_m.c b/libraries/libldap/tls_m.c +index 4c18360..d71fec7 100644 +--- a/libraries/libldap/tls_m.c ++++ b/libraries/libldap/tls_m.c +@@ -624,7 +624,7 @@ nss_parse_ciphers(const char *cipherstr, int cipher_list[ciphernum]) + } else { + for (i=0; i 2.4.31-2 - fix: nss-tools package is required by the base package, not the server subpackage