nss and nspr security, bug fix, and enhancement update

🗓️ 03 Aug 2020 12:45:28Reported by Rockylinux Product ErrataType

rocky

rocky🔗 errata.rockylinux.org👁 37 Views

Update for NSS and NSPR libraries with security and bug fixe

Reporter	Title	Published	Views	Family All 386
ALT Linux	Security fix for the ALT Linux 10 package firefox-esr version 68.9.0-alt1	3 Jun 202000:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 10 package thunderbird version 68.9.0-alt1	4 Jun 202000:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 10 package firefox-esr version 78.0.1-alt1	4 Jul 202000:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 10 package thunderbird version 78.0-alt1	21 Jul 202000:00	–	altlinux
IBM Security Bulletins	Security Bulletin: Vulnerability in nss and nspr CVE-2019-17006.	22 Sep 202123:38	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Security Privileged Identity Manager is affected by security vulnerabilities	12 Jan 202110:59	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Security Guardium is affected by multiple vulnerabilities	29 Apr 202502:26	–	ibm
IBM Security Bulletins	Security Bulletin: IBM has announced a release for IBM Security Identity Governance and Intelligence in response to a security vulnerability (CVE-2019-17006, CVE-2019-17023, CVE-2020-12403)	8 Jul 202117:59	–	ibm
IBM Security Bulletins	Security Bulletin: A security vulnerabilitiy has been fixed in IBM Security Identity Manager Virtual Appliance(CVE-2019-17006)	20 May 202118:59	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities of Mozilla Firefox (less than Firefox 68.9.0 ESR) hava affected Synthetic Playback Agent 8.1.4.0-8.1.4 IF11 + ICAM2019.3.0 - 2020.2.0	1 Sep 202010:38	–	ibm

OS	OS Version	Architecture	Package	Package Version	Filename
Rocky Linux	8	aarch64	nspr	0:4.25.0-2.el8_2	nspr-0:4.25.0-2.el8_2.aarch64.rpm
Rocky Linux	8	i686	nspr	0:4.25.0-2.el8_2	nspr-0:4.25.0-2.el8_2.i686.rpm
Rocky Linux	8	x86_64	nspr	0:4.25.0-2.el8_2	nspr-0:4.25.0-2.el8_2.x86_64.rpm
Rocky Linux	8	aarch64	nspr-debuginfo	0:4.25.0-2.el8_2	nspr-debuginfo-0:4.25.0-2.el8_2.aarch64.rpm
Rocky Linux	8	i686	nspr-debuginfo	0:4.25.0-2.el8_2	nspr-debuginfo-0:4.25.0-2.el8_2.i686.rpm
Rocky Linux	8	x86_64	nspr-debuginfo	0:4.25.0-2.el8_2	nspr-debuginfo-0:4.25.0-2.el8_2.x86_64.rpm
Rocky Linux	8	aarch64	nspr-debugsource	0:4.25.0-2.el8_2	nspr-debugsource-0:4.25.0-2.el8_2.aarch64.rpm
Rocky Linux	8	i686	nspr-debugsource	0:4.25.0-2.el8_2	nspr-debugsource-0:4.25.0-2.el8_2.i686.rpm
Rocky Linux	8	x86_64	nspr-debugsource	0:4.25.0-2.el8_2	nspr-debugsource-0:4.25.0-2.el8_2.x86_64.rpm
Rocky Linux	8	aarch64	nspr-devel	0:4.25.0-2.el8_2	nspr-devel-0:4.25.0-2.el8_2.aarch64.rpm

03 Aug 2020 12:45Current

7.9High risk

Vulners AI Score7.9

CVSS 210

CVSS 3.19.8

EPSS0.03552

nss nspr security update bug fixes cvss score cross-platform development platform independence uaf side channel vulnerabilities tls 1.3 fips mode rfe enhancement.