Lucene search
OracleLinuxELSA-2017-1100HistoryApr 20, 2017 - 12:00 a.m.
nss and nss-util security update
2017-04-2000:00:00
linux.oracle.com
58
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.013 Low
EPSS
Percentile
84.5%
nss
[3.28.4-1.0.1]
- Added nss-vendor.patch to change vendor
- Temporarily disable some tests until expired PayPalEE.cert is renewed
[3.28.4-1] - Rebase to 3.28.4
nss-util
[3.28.4-1] - Rebase to NSS 3.28.4 to accommodate base64 encoding fix
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 6 | src | nss | < 3.28.4-1.0.1.el6_9 | nss-3.28.4-1.0.1.el6_9.src.rpm |
| oracle linux | 6 | src | nss-util | < 3.28.4-1.el6_9 | nss-util-3.28.4-1.el6_9.src.rpm |
| oracle linux | 6 | i686 | nss | < 3.28.4-1.0.1.el6_9 | nss-3.28.4-1.0.1.el6_9.i686.rpm |
| oracle linux | 6 | i686 | nss-devel | < 3.28.4-1.0.1.el6_9 | nss-devel-3.28.4-1.0.1.el6_9.i686.rpm |
| oracle linux | 6 | i686 | nss-pkcs11-devel | < 3.28.4-1.0.1.el6_9 | nss-pkcs11-devel-3.28.4-1.0.1.el6_9.i686.rpm |
| oracle linux | 6 | i686 | nss-sysinit | < 3.28.4-1.0.1.el6_9 | nss-sysinit-3.28.4-1.0.1.el6_9.i686.rpm |
| oracle linux | 6 | i686 | nss-tools | < 3.28.4-1.0.1.el6_9 | nss-tools-3.28.4-1.0.1.el6_9.i686.rpm |
| oracle linux | 6 | i686 | nss-util | < 3.28.4-1.el6_9 | nss-util-3.28.4-1.el6_9.i686.rpm |
| oracle linux | 6 | i686 | nss-util-devel | < 3.28.4-1.el6_9 | nss-util-devel-3.28.4-1.el6_9.i686.rpm |
| oracle linux | 6 | src | nss | < 3.28.4-1.0.1.el6_9 | nss-3.28.4-1.0.1.el6_9.src.rpm |
Related
nessus
nessus
RHEL 5 : nss (RHSA-2017:1101)
2018-08-29 00:00:00
EulerOS 2.0 SP2 : nss, nss-util (EulerOS-SA-2017-1076)
2017-05-03 00:00:00
ibm
ibm
Security Bulletin: IBM MQ Appliance is affected by a Network Security Services (NSS) vulnerability (CVE-2017-5461)
2019-08-13 19:16:48
Security Bulletin: IBM Security Access Manager Appliance is affected by a Network Security Services (NSS) vulnerability (CVE-2017-5461)
2018-06-16 22:01:47
Security Bulletin: A vulnerability in NSS affects PowerKVM
2018-06-18 01:36:14
cve
cve
CVE-2017-5461
2017-05-11 01:29:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:16:53
redhat
redhat
(RHSA-2017:1102) Critical: nss-util security update
2017-04-20 01:01:41
(RHSA-2017:1101) Critical: nss security update
2017-04-20 00:00:00
(RHSA-2017:1100) Critical: nss and nss-util security update
2017-04-20 01:00:25
debiancve
debiancve
CVE-2017-5461
2017-05-11 01:29:00
alpinelinux
alpinelinux
CVE-2017-5461
2017-05-11 01:29:00
openvas
openvas
CentOS Update for nss-util CESA-2017:1100 centos6
2017-04-21 00:00:00
Huawei EulerOS: Security Advisory for nss, nss-util (EulerOS-SA-2017-1075)
2020-01-23 00:00:00
CentOS Update for nss CESA-2017:1100 centos6
2017-04-21 00:00:00
symantec
symantec
SA150: NSS Vulnerability April 2017
2017-05-25 08:00:00
oraclelinux
oraclelinux
nss security update
2017-04-28 00:00:00
osv
osv
CVE-2017-5461
2017-05-11 01:29:05
nss - security update
2017-05-19 00:00:00
nss - security update
2017-06-01 00:00:00
centos
centos
nss security update
2017-04-20 22:43:59
prion
prion
Out-of-bounds
2017-05-11 01:29:00
ubuntucve
ubuntucve
CVE-2017-5461
2017-04-20 00:00:00
redhatcve
redhatcve
CVE-2017-5461
2019-10-05 10:43:48
archlinux
archlinux
[ASA-201705-21] lib32-nss: arbitrary code execution
2017-05-29 00:00:00
[ASA-201704-4] nss: arbitrary code execution
2017-04-20 00:00:00
[ASA-201704-6] firefox: multiple issues
2017-04-21 00:00:00
f5
f5
K12109859 : Mozilla NSS vulnerability CVE-2017-5461
2017-05-08 00:00:00
amazon
amazon
Critical: nss, nss-util
2017-04-27 00:04:00
gentoo
gentoo
Mozilla Network Security Service (NSS): Multiple vulnerabilities
2017-05-07 00:00:00
Mozilla Firefox: Multiple vulnerabilities
2018-02-20 00:00:00
debian
debian
[SECURITY] [DLA 946-1] nss security update
2017-05-19 13:15:53
[SECURITY] [DSA 3872-1] nss security update
2017-06-01 21:02:28
[SECURITY] [DLA 906-1] firefox-esr security update
2017-04-21 17:26:13
ubuntu
ubuntu
NSS vulnerabilities
2017-04-27 00:00:00
NSS vulnerability
2017-07-31 00:00:00
Thunderbird vulnerabilities
2017-05-16 00:00:00
freebsd
freebsd
NSS -- multiple vulnerabilities
2017-03-17 00:00:00
mozilla -- multiple vulnerabilities
2017-04-19 00:00:00
suse
suse
Security update for Mozilla Firefox (important)
2017-04-25 00:08:46
Security update for MozillaFirefox, mozilla-nss, mozilla-nspr, java-1_8_0-openjdk (important)
2017-05-11 21:15:07
Security update for MozillaFirefox, mozilla-nss, mozilla-nspr (important)
2017-05-04 15:13:58
altlinux
altlinux
Security fix for the ALT Linux 10 package firefox-esr version 45.9.0-alt1
2017-04-20 00:00:00
Security fix for the ALT Linux 10 package thunderbird version 52.1.0-alt1
2017-05-02 00:00:00
mageia
mageia
Updated firefox packages fix security vulnerability
2017-04-28 01:21:29
Updated iceape packages fix security vulnerabilities
2018-01-02 14:48:29
mozilla
mozilla
Security vulnerabilities fixed in Firefox ESR 45.9 — Mozilla
2017-04-19 00:00:00
Security vulnerabilities fixed in Thunderbird 52.1 — Mozilla
2017-04-30 00:00:00
Security vulnerabilities fixed in Firefox ESR 52.1 — Mozilla
2017-04-19 00:00:00
kaspersky
kaspersky
KLA11007 Multiple vulnerabilities in Mozilla Thunderbird
2017-04-30 00:00:00
KLA11004 Multiple vulnerabilities in Mozilla Firefox and Mozilla Firefox ESR
2017-04-19 00:00:00
oracle
oracle
Oracle Critical Patch Update - January 2018
2018-01-16 00:00:00
Oracle Critical Patch Update - October 2017
2017-10-17 00:00:00
Oracle Critical Patch Update Advisory - July 2021
2021-07-20 00:00:00
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.013 Low
EPSS
Percentile
84.5%
Related for ELSA-2017-1100