Lucene search

K
osvGoogleOSV:RLSA-2021:4903
HistoryDec 01, 2021 - 5:52 p.m.

Critical: nss security update

2021-12-0117:52:10
Google
osv.dev
14
network security services
memory corruption
cve-2021-43527
cross-platform development
security fix

AI Score

9.9

Confidence

High

EPSS

0.008

Percentile

81.4%

Network Security Services (NSS) is a set of libraries designed to support the cross-platform development of security-enabled client and server applications.

Security Fix(es):

  • nss: Memory corruption in decodeECorDsaSignature with DSA signatures (and RSA-PSS) (CVE-2021-43527)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.