4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.001 Low
EPSS
Percentile
46.1%
Network Security Services (NSS) is a set of libraries designed to support
the development of security-enabled client and server applications.
A flaw was found in the way NSS matched SSL certificates when the
certificates had a Common Name containing a wildcard and a partial IP
address. NSS incorrectly accepted connections to IP addresses that fell
within the SSL certificate’s wildcard range as valid SSL connections,
possibly allowing an attacker to conduct a man-in-the-middle attack.
(CVE-2010-3170)
All NSS users should upgrade to these updated packages, which provide NSS
version 3.12.8 to resolve this issue. After installing the update,
applications using NSS must be restarted for the changes to take effect.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 6 | s390x | nss-sysinit | < 3.12.8-1.el6_0 | nss-sysinit-3.12.8-1.el6_0.s390x.rpm |
RedHat | 6 | x86_64 | nss | < 3.12.8-1.el6_0 | nss-3.12.8-1.el6_0.x86_64.rpm |
RedHat | 6 | s390x | nss-tools | < 3.12.8-1.el6_0 | nss-tools-3.12.8-1.el6_0.s390x.rpm |
RedHat | 6 | s390 | nss-devel | < 3.12.8-1.el6_0 | nss-devel-3.12.8-1.el6_0.s390.rpm |
RedHat | 6 | i686 | nss-pkcs11-devel | < 3.12.8-1.el6_0 | nss-pkcs11-devel-3.12.8-1.el6_0.i686.rpm |
RedHat | 6 | i686 | nss-softokn-debuginfo | < 3.12.8-1.el6_0 | nss-softokn-debuginfo-3.12.8-1.el6_0.i686.rpm |
RedHat | 6 | s390 | nss-pkcs11-devel | < 3.12.8-1.el6_0 | nss-pkcs11-devel-3.12.8-1.el6_0.s390.rpm |
RedHat | 6 | src | nss-softokn | < 3.12.8-1.el6_0 | nss-softokn-3.12.8-1.el6_0.src.rpm |
RedHat | 6 | ppc64 | nss-util-devel | < 3.12.8-1.el6_0 | nss-util-devel-3.12.8-1.el6_0.ppc64.rpm |
RedHat | 6 | s390x | nss-debuginfo | < 3.12.8-1.el6_0 | nss-debuginfo-3.12.8-1.el6_0.s390x.rpm |