Fedora Core 9 FEDORA-2009-1276 (nss)

Summary
The remote host is missing an update to nss announced via advisory FEDORA-2009-1276.
Solution
Apply the appropriate updates. This update can be installed with the yum update program. Use su -c 'yum update nss' at the command line. For more information, refer to Managing Software with yum, available at http://docs.fedoraproject.org/yum/. https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-1276
Insight
Network Security Services (NSS) is a set of libraries designed to support cross-platform development of security-enabled client and server applications. Applications built with NSS can support SSL v2 and v3, TLS, PKCS #5, PKCS #7, PKCS #11, PKCS #12, S/MIME, X.509 v3 certificates, and other security standards. Update Information: This updates adds protection against rogue CA that was generated as a proof-of- concept of the MD5 collision attacks against X509 signatures: http://www.win.tue.nl/hashclash/rogue-ca/ , related to CVE-2004-2761. ChangeLog: * Fri Jan 23 2009 Kai Engert - 3.12.2.0-2 - Update to NSS_3_12_2_WITH_CKBI_1_73_RTM