CVE-2017-7805

2017-09-28T19:19:32
ID RH:CVE-2017-7805
Type redhatcve
Reporter redhat.com
Modified 2020-08-20T20:35:58

Description

A use-after-free flaw was found in the TLS 1.2 implementation in the NSS library when client authentication was used. A malicious client could use this flaw to cause an application compiled against NSS to crash or, potentially, execute arbitrary code with the permission of the user running the application.