nss and nspr security, bug fix, and enhancement update

🗓️ 04 Aug 2020 00:00:00Reported by OracleLinuxType

oraclelinux

oraclelinux🔗 linux.oracle.com👁 53 Views

Update to NSPR 4.25 and NSS 3.53.1 for security, bug fix, and enhancement

Reporter	Title	Published	Views	Family All 305
IBM Security Bulletins	Security Bulletin: Vulnerability in nss and nspr CVE-2019-17006.	22 Sep 202123:38	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Security Privileged Identity Manager is affected by security vulnerabilities	12 Jan 202110:59	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Security Guardium is affected by multiple vulnerabilities	29 Apr 202502:26	–	ibm
IBM Security Bulletins	Security Bulletin: IBM has announced a release for IBM Security Identity Governance and Intelligence in response to a security vulnerability (CVE-2019-17006, CVE-2019-17023, CVE-2020-12403)	8 Jul 202117:59	–	ibm
IBM Security Bulletins	Security Bulletin: A security vulnerabilitiy has been fixed in IBM Security Identity Manager Virtual Appliance(CVE-2019-17006)	20 May 202118:59	–	ibm
IBM Security Bulletins	Security Bulletin: IBM MQ Appliance is affected by multiple nss and nspr vulnerabilities	21 Jan 202109:32	–	ibm
ALT Linux	Security fix for the ALT Linux 10 package firefox-esr version 78.0.1-alt1	4 Jul 202000:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 10 package thunderbird version 78.0-alt1	21 Jul 202000:00	–	altlinux
Tenable Nessus	Amazon Linux 2 : nspr, nss-softokn, nss-util, nss (ALAS-2020-1559)	11 Nov 202000:00	–	nessus
Tenable Nessus	Amazon Linux AMI : nspr, nss-softokn, nss-util (ALAS-2021-1522)	13 Jul 202100:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
oracle linux	8	src	nspr	4.25.0-2.el8_2	nspr-4.25.0-2.el8_2.src.rpm
oracle linux	8	src	nss	3.53.1-11.el8_2	nss-3.53.1-11.el8_2.src.rpm
oracle linux	8	aarch64	nspr	4.25.0-2.el8_2	nspr-4.25.0-2.el8_2.aarch64.rpm
oracle linux	8	aarch64	nspr-devel	4.25.0-2.el8_2	nspr-devel-4.25.0-2.el8_2.aarch64.rpm
oracle linux	8	aarch64	nss	3.53.1-11.el8_2	nss-3.53.1-11.el8_2.aarch64.rpm
oracle linux	8	aarch64	nss-devel	3.53.1-11.el8_2	nss-devel-3.53.1-11.el8_2.aarch64.rpm
oracle linux	8	aarch64	nss-softokn	3.53.1-11.el8_2	nss-softokn-3.53.1-11.el8_2.aarch64.rpm
oracle linux	8	aarch64	nss-softokn-devel	3.53.1-11.el8_2	nss-softokn-devel-3.53.1-11.el8_2.aarch64.rpm
oracle linux	8	aarch64	nss-softokn-freebl	3.53.1-11.el8_2	nss-softokn-freebl-3.53.1-11.el8_2.aarch64.rpm
oracle linux	8	aarch64	nss-softokn-freebl-devel	3.53.1-11.el8_2	nss-softokn-freebl-devel-3.53.1-11.el8_2.aarch64.rpm

04 Aug 2020 00:00Current

2.4Low risk

Vulners AI Score2.4

CVSS 210

CVSS 3.19.8

EPSS0.03036

nspr nss update bug fix security enhancement unix rebuild disable fix dh ecdh fips mode md5 rsa patch