libnss3-tools - Network Security Service tools

Distribution: Debian 8 (Jessie)
Repository: Debian Main i386
Package name: libnss3-tools
Package version: 3.26
Package release: 1+debu8u2
Package architecture: i386
Package type: deb
Installed size: 4.28 KB
Download size: 828.89 KB
Official Mirror:
This is a set of tools on top of the Network Security Service libraries. This package includes: * certutil: manages certificate and key databases (cert7.db and key3.db) * modutil: manages the database of PKCS11 modules (secmod.db) * pk12util: imports/exports keys and certificates between the cert/key databases and files in PKCS12 format. * shlibsign: creates .chk files for use in FIPS mode. * signtool: creates digitally-signed jar archives containing files and/or code. * ssltap: proxy requests for an SSL server and display the contents of the messages exchanged between the client and server.



    Source package: nss

    Install Howto

    1. Update the package index:
      # sudo apt-get update
    2. Install libnss3-tools deb package:
      # sudo apt-get install libnss3-tools


    2017-05-30 - Moritz M├╝hlenhoff <> nss (2:3.26-1+debu8u2) jessie-security; urgency=medium * CVE-2017-5461 CVE-2017-5462 CVE-2017-7502

    2016-10-03 - Florian Weimer <> nss (2:3.26-1+debu8u1) jessie-security; urgency=medium * New upstream release. Closes: #583651. * Remove SPI CA certificate. * Remove transitional compatibility kludge for renegotiation handling. * Update watch file and Vcs URLs, and the symbols file from unstable.

    2015-08-15 - Christoph Egger <> nss (2:3.17.2-1.1+deb8u2) jessie; urgency=medium [ Andrew Ayer ] * Apply upstream patch (99_prefer_stronger_cert_chains.patch) to fix certificate chain generation to prefer stronger/newer certificates over weaker/older certs. Closes: #774195.

    2015-08-11 - Salvatore Bonaccorso <> nss (2:3.17.2-1.1+deb8u1) jessie-security; urgency=high * Non-maintainer upload by the Security Team. * Add 99_CVE-2015-2721.patch patch. CVE-2015-2721: NSS incorrectly permits skipping of ServerKeyExchange. * Add 100_CVE-2015-2730.patch patch. CVE-2015-2730: ECDSA signature validation fails to handle some signatures correctly.

    2014-12-21 - Matt Kraai <> nss (2:3.17.2-1.1) unstable; urgency=medium * Non-maintainer upload. * Fix CVE-2014-1569. Closes: #773625.

    2014-10-18 - Mike Hommey <> nss (2:3.17.2-1) unstable; urgency=medium * New upstream release.

    2014-09-24 - Mike Hommey <> nss (2:3.17.1-1) unstable; urgency=high * New upstream release. - Fixes CVE-2014-1568. - Add support for ppc64el, with a non-broken patch. Closes: #745757. * debian/libnss3.symbols: Add NSSUTIL_3.17.1 symbol versions.

    2014-08-24 - Mike Hommey <> nss (2:3.17-1) unstable; urgency=medium * New upstream release. * nss/coreconf/ Actually add support for ppc64el. Closes: #745757.

    2014-08-18 - Andreas Barth <> nss (2:3.16.3-1.1) unstable; urgency=low * Non-maintainer upload to delayed. * Add support for ppc64el. Closes: #745757

    2014-07-13 - Mike Hommey <> nss (2:3.16.3-1) unstable; urgency=medium * New upstream release. * debian/libnss3.symbols: Add NSS_3.16.2 symbol versions.