nss - several

2011-11-0700:00:00

Google

osv.dev

7.1 High

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:S/C:C/I:C/A:C

JSON

This update to the NSS cryptographic libraries revokes the trust in the
DigiCert Sdn. Bhd certificate authority. More information can be found
in the

Mozilla Security Blog.

This update also fixes an insecure load path for pkcs11.txt configuration
file (
CVE-2011-3640).

For the oldstable distribution (lenny), this problem has been fixed in
version 3.12.3.1-0lenny7.

For the stable distribution (squeeze), this problem has been fixed in
version 3.12.8-1+squeeze4.

For the unstable distribution (sid), this problem has been fixed in
version 3.13.1.with.ckbi.1.88-1.

We recommend that you upgrade your nss packages.

CPENameOperatorVersion
nsseq3.12.3.1-0lenny6
nsseq3.12.0-6
nsseq3.12.1-1
nsseq3.12.2.with.ckbi.1.73-1
nsseq3.12.3.1-0lenny3
nsseq3.12.3-1
nsseq3.12.2.with.ckbi.1.73-2
nsseq3.12.3.1-0lenny2
nsseq3.12.3.1-0lenny1
nsseq3.12.3.1-0lenny5

Name	Operator	Version
nss	eq	3.12.3.1-0lenny6
nss	eq	3.12.0-6
nss	eq	3.12.1-1
nss	eq	3.12.2.with.ckbi.1.73-1
nss	eq	3.12.3.1-0lenny3
nss	eq	3.12.3-1
nss	eq	3.12.2.with.ckbi.1.73-2
nss	eq	3.12.3.1-0lenny2
nss	eq	3.12.3.1-0lenny1
nss	eq	3.12.3.1-0lenny5