Logjam SSL Vulnerability in Ubuntu 14.04 LTS and older

News & Events etc. will be posted here.


Logjam SSL Vulnerability in Ubuntu 14.04 LTS and older

Postby ryanvade » Sat Jun 13, 2015 8:29 pm

I have noticed that Ubuntu 14.04 LTS is vulnerable to the Logjam vulnerability. The main reason for this is the NSS library it is using (3.18). A fix has been releases for NSS 3.19. To test your web browser go to https://weakdh.org/
To find out what version of NSS you are using, open firefox and go to about:support and search for NSS.

Ubuntu 15.10 has the patched version of NSS. I have seen no indication that NSS 3.19.1 will be backported to 14.04 or 15.04. Manually upgrading causes dependency issues.

For more information:
https://developer.mozilla.org/en-US/doc ... ojects/NSS
Image

Laptop: HP dv6t-7000 CTO Desktop: Compaq Presario SR21632wm
i5 2450m Pentium D 960 @ 4 GHz
6 GB ram 2 GB ram
Intel HD 3000 Graphics / Nvidia GT 630M Nvidia GT 520 @ 820 MHz
Diamond II-B 3.10-rc4/Windows 7 Home Premium KDE | Windows 7 Starter/Arch Linux

Paid supporter of the Linux Foundation
User avatar
ryanvade
Moderator
 
Posts: 499
Joined: Sat Apr 28, 2012 10:54 am
Operating System: Other Linux



Re: Logjam SSL Vulnerability in Ubuntu 14.04 LTS and older

Postby swarfendor437 » Mon Sep 12, 2016 3:45 pm

Yet another item of news I have missed - thanks ryanvade for sharing this information and bringing it to the community attention. <BREW>
http://www.ultimateeditionoz.com (coolest site on the planet ... after this one!)
http://www.zorin-os.com (my other OS)
http://trisquel.info
http://www.jamendo.com (for Creative Commons Licensed Music - legal and free to download - largest in the world)
User avatar
swarfendor437
U.E. Knowledgable
U.E. Knowledgable
 
Posts: 33
Joined: Wed May 07, 2008 5:58 pm
Location: UK
Operating System: Other Linux


Return to News and Events

Who is online

Users browsing this forum: No registered users and 2 guests