1. 내용
- SSL 프로토콜 다운그래이드 방지를 위한 패치
애플리케이션에 대한 공격 낮은 SSL/TLS를 사용하여 다시 연결 가능한 버그 패
2. 업데이트 방법
yum update
3. 관련 패키지
SRPMS:
nss-3.16.2.3-3.el6_6.src.rpm
nss-util-3.16.2.3-2.el6_6.src.rpm
IA-32:
nss-3.16.2.3-3.el6_6.i686.rpm
nss-debuginfo-3.16.2.3-3.el6_6.i686.rpm
nss-devel-3.16.2.3-3.el6_6.i686.rpm
nss-pkcs11-devel-3.16.2.3-3.el6_6.i686.rpm
nss-sysinit-3.16.2.3-3.el6_6.i686.rpm
nss-tools-3.16.2.3-3.el6_6.i686.rpm
nss-util-3.16.2.3-2.el6_6.i686.rpm
nss-util-debuginfo-3.16.2.3-2.el6_6.i686.rpm
nss-util-devel-3.16.2.3-2.el6_6.i686.rpm
x86_64:
nss-3.16.2.3-3.el6_6.i686.rpm
nss-3.16.2.3-3.el6_6.x86_64.rpm
nss-debuginfo-3.16.2.3-3.el6_6.i686.rpm
nss-debuginfo-3.16.2.3-3.el6_6.x86_64.rpm
nss-devel-3.16.2.3-3.el6_6.i686.rpm
nss-devel-3.16.2.3-3.el6_6.x86_64.rpm
nss-pkcs11-devel-3.16.2.3-3.el6_6.i686.rpm
nss-pkcs11-devel-3.16.2.3-3.el6_6.x86_64.rpm
nss-sysinit-3.16.2.3-3.el6_6.x86_64.rpm
nss-tools-3.16.2.3-3.el6_6.x86_64.rpm
nss-util-3.16.2.3-2.el6_6.i686.rpm
nss-util-3.16.2.3-2.el6_6.x86_64.rpm
nss-util-debuginfo-3.16.2.3-2.el6_6.i686.rpm
nss-util-debuginfo-3.16.2.3-2.el6_6.x86_64.rpm
nss-util-devel-3.16.2.3-2.el6_6.i686.rpm
nss-util-devel-3.16.2.3-2.el6_6.x86_64.rpm
4. 참고 사이트
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566
https://www.sulinux.net/bbs2014/board.php?bo_table=update_2&wr_id=640