The mod_nss module prior to 1.0.11 in Fedora allows remote malicious users to obtain cipher lists due to incorrect parsing of multi-keyword cipherstring.
mod nss project mod nss