Note: This bug is displayed in read-only format because the product is no longer active in Red Hat Bugzilla.
For bugs related to Red Hat Enterprise Linux 5 product line. The current stable release is 5.10. For Red Hat Enterprise Linux 6 and above, please visit Red Hat JIRA https://issues.redhat.com/secure/CreateIssue!default.jspa?pid=12332745 to report new issues.

Bug 1158159

Summary: Upgrade to NSS 3.16.2.3 for Firefox 31.3 [rhel-5.11.z]
Product: Red Hat Enterprise Linux 5 Reporter: Kai Engert (:kaie) (inactive account) <kengert>
Component: nssAssignee: Elio Maldonado Batiz <emaldona>
Status: CLOSED ERRATA QA Contact: Karel Srot <ksrot>
Severity: high Docs Contact:
Priority: high    
Version: 5.11CC: bgollahe, hkario, huzaifas, jkurik, ksrot, rrelyea, sforsber, szidek
Target Milestone: rc   
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: nss-3.16.2.3-1.el5_11 Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2014-12-02 23:04:38 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 1167342, 1167427    

Description Kai Engert (:kaie) (inactive account) 2014-10-28 18:27:38 UTC 
Upstream Firefox 31.3 (scheduled for Nov 25) will pick up NSS 3.16.2.3

RHEL should rebase, or pick up the patches.
- support TLS_FALLBACK_SCSV (if desired)
- fix the 100% CPU EC key bug

If support for TLS_FALLBACK_SCSV gets added and automated testing is desired, you might consider to pick up this tool patch in addition, allowing to test using tstclnt:
https://bugzilla.mozilla.org/show_bug.cgi?id=1083360

I don't know if the bug is contained in the version of freebl/softokn used on RHEL 5.
Comment 8 errata-xmlrpc 2014-12-02 23:04:38 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://rhn.redhat.com/errata/RHSA-2014-1948.html