libnss: security bump to version 3.17.1

Fixes CVE-2014-1568 RSA signature forgery attack. Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
author: Gustavo Zacarias <gustavo@zacarias.com.ar> 2014-09-25 09:48:04 -0300
committer: Peter Korsgaard <peter@korsgaard.com> 2014-09-25 21:41:07 +0200
commit: 0901d9049e600298ec1ae4b2d1c600bebfb8ae08 (patch)
tree: 976c5ca516ea0065f40877c59ce5ac2c82223d07
parent: 8733f742b619193fba69daf5f2297f2e89896ade (diff)
download: buildroot-0901d9049e600298ec1ae4b2d1c600bebfb8ae08.tar.gz
buildroot-0901d9049e600298ec1ae4b2d1c600bebfb8ae08.zip
2 files changed, 4 insertions, 1 deletions
diff --git a/package/libnss/libnss.hash b/package/libnss/libnss.hash
new file mode 100644
index 0000000000..8c9420ca55
--- /dev/null
+++ b/package/libnss/libnss.hash
@@ -0,0 +1,3 @@
+# From https://ftp.mozilla.org/pub/mozilla.org/security/nss/releases/NSS_3_17_1_RTM/src/
+sha1	32347d8b476efa5c7a4cfa21f8e5a1d0d89942ea	nss-3.17.1.tar.gz
+sha256	0e210afba7cd1e033a08f61fcd1f466639649fc413e72aa050f3d52c19376e5f	nss-3.17.1.tar.gz
diff --git a/package/libnss/libnss.mk b/package/libnss/libnss.mk
index a822726e3a..066606fb18 100644
--- a/package/libnss/libnss.mk
+++ b/package/libnss/libnss.mk
@@ -4,7 +4,7 @@
 #
 ################################################################################
 
-LIBNSS_VERSION = 3.17
+LIBNSS_VERSION = 3.17.1
 LIBNSS_SOURCE = nss-$(LIBNSS_VERSION).tar.gz
 LIBNSS_SITE = https://ftp.mozilla.org/pub/mozilla.org/security/nss/releases/NSS_$(subst .,_,$(LIBNSS_VERSION))_RTM/src
 LIBNSS_DISTDIR = dist
author	Gustavo Zacarias <gustavo@zacarias.com.ar>	2014-09-25 09:48:04 -0300
committer	Peter Korsgaard <peter@korsgaard.com>	2014-09-25 21:41:07 +0200
commit	0901d9049e600298ec1ae4b2d1c600bebfb8ae08 (patch)
tree	976c5ca516ea0065f40877c59ce5ac2c82223d07
parent	8733f742b619193fba69daf5f2297f2e89896ade (diff)
download	buildroot-0901d9049e600298ec1ae4b2d1c600bebfb8ae08.tar.gz buildroot-0901d9049e600298ec1ae4b2d1c600bebfb8ae08.zip