Lucene search
GoogleOSV:DLA-23-1HistoryJul 31, 2014 - 12:00 a.m.
nss - security update
2014-07-3100:00:00
Google
osv.dev
12
0.101 Low
EPSS
Percentile
95.0%
- CVE-2013-1741
Runaway memset in certificate parsing on 64-bit computers leading to
a crash by attempting to write 4Gb of nulls. - CVE-2013-5606
Certificate validation with the verifylog mode did not return
validation errors, but instead expected applications to determine
the status by looking at the log. - CVE-2014-1491
Ticket handling protection mechanisms bypass due to the lack of
restriction of public values in Diffie-Hellman key exchanges. - CVE-2014-1492
Incorrect IDNA domain name matching for wildcard certificates could
allow specially-crafted invalid certificates to be considered as
valid.
For Debian 6 Squeeze, these issues have been fixed in nss version 3.12.8-1+squeeze8
References
Related
osv
osv
nss - security update
2014-07-31 00:00:00
openvas
openvas
Debian Security Advisory DSA 2994-1 (nss - security update)
2014-07-31 00:00:00
Debian: Security Advisory (DLA-23-1)
2023-03-08 00:00:00
Debian: Security Advisory (DSA-2994-1)
2014-07-30 00:00:00
debian
debian
[SECURITY] [DSA 2994-1] nss security update
2014-07-31 11:51:32
[DLA 23-1] nss security update
2014-07-31 11:23:33
nessus
nessus
Debian DLA-23-1 : nss security update
2015-03-26 00:00:00
Debian DSA-2994-1 : nss - security update
2014-08-01 00:00:00
Oracle Traffic Director Multiple Vulnerabilities (July 2014 CPU)
2014-07-31 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: nss-3.15.3-2.fc20
2013-12-14 02:52:25
[SECURITY] Fedora 18 Update: nss-softokn-3.15.3-1.fc18
2013-12-21 02:19:41
[SECURITY] Fedora 19 Update: nss-softokn-3.15.3-1.fc19
2013-12-15 03:36:48
ubuntu
ubuntu
NSS vulnerabilities
2013-11-18 00:00:00
NSS vulnerability
2014-04-02 00:00:00
suse
suse
Security update for mozilla-nspr, mozilla-nss (important)
2013-12-02 20:04:14
cve
cve
debiancve
debiancve
cvelist
cvelist
nvd
nvd
ubuntucve
ubuntucve
oraclelinux
oraclelinux
nss, nspr, and nss-util security update
2013-12-12 00:00:00
nss and nspr security, bug fix, and enhancement update
2013-12-05 00:00:00
nss, nss-util, and nss-softokn security, bug fix, and enhancement update
2014-12-02 00:00:00
securityvulns
securityvulns
Mozilla nss security vulnerabilities
2013-11-26 00:00:00
[ MDVSA-2014:066 ] nss
2014-03-24 00:00:00
prion
prion
Design/Logic Flaw
2013-11-18 05:23:00
Authentication flaw
2014-02-06 05:44:00
Design/Logic Flaw
2014-03-25 13:25:00
mozilla
mozilla
Miscellaneous Network Security Services (NSS) vulnerabilities — Mozilla
2013-11-15 00:00:00
Incorrect IDNA domain name matching for wildcard certificates — Mozilla
2014-04-29 00:00:00
mageia
mageia
Updated firefox, rootcerts, nspr & nss packages fix security vulnerabilities
2013-11-21 00:54:49
redhat
redhat
seebug
seebug
Mozilla Network Security Services 'p12creat.c'内存破坏漏洞
2014-03-25 00:00:00
slackware
slackware
[slackware-security] mozilla-nss
2014-03-28 22:54:39
intothesymmetry
intothesymmetry
Small subgroup attack in Mozilla NSS
2015-12-22 13:29:00
veracode
veracode
Man-in-the-Middle Attack
2019-05-02 05:03:48
Denial Of Service (DoS)
2019-05-02 05:00:22
Denial Of Service (DoS)
2019-05-02 05:00:20
centos
centos
nss security update
2014-09-30 11:21:57
nss security update
2014-08-18 21:47:41
nspr, nss security update
2013-12-05 17:45:58
amazon
amazon
Important: nspr
2013-12-17 21:31:00
Important: nss
2013-12-17 21:31:00