Lucene search
K

4 matches found

AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.2 views

Astra Linux – Vulnerability in Firefox, NSS

Calling PK11Encrypt in NSS using CKMCHACHA20 and the same buffer for input and output can result in plaintext on an Intel Sandy Bridge processor. In Firefox, this only affects the QUIC header protection feature when the connection uses the ChaCha20-Poly1305 cipher suite. The most likely outcome i...

6.5CVSS6.7AI score0.00409EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/09/19 11:29 a.m.5 views

mozilla: nss: PK11_Encrypt using CKM_CHACHA20 can reveal plaintext on Intel Sandy Bridge machines

The Mozilla Foundation Security Advisory describes this flaw as: Calling PK11Encrypt in NSS using CKMCHACHA20 and the same buffer for input and output can result in plaintext on Intel Sandy Bridge and later processors. In Firefox this only affects the QUIC header protection feature when the...

6.5CVSS7.4AI score0.00409EPSS
Exploits0References5
Microsoft CVE
Microsoft CVE
added 2021/06/10 7:0 a.m.6 views

A flaw was found in the way CHACHA20-POLY1305 was implemented in NSS in versions before 3.55. When using multi-part Chacha20 it could cause out-of-bounds reads. This issue was fixed by explicitly disabling multi-part ChaCha20 (which was not functioning correctly) and strictly enforcing tag length. The highest threat from this vulnerability is to confidentiality and system availability.

...

9.1CVSS7AI score0.01541EPSS
Exploits0
OSV
OSV
added 2021/05/27 7:15 p.m.7 views

AZL-6746 CVE-2020-12403 affecting package nss for versions less than 3.44-10

A flaw was found in the way CHACHA20-POLY1305 was implemented in NSS in versions before 3.55. When using multi-part Chacha20, it could cause out-of-bounds reads. This issue was fixed by explicitly disabling multi-part ChaCha20 which was not functioning correctly and strictly enforcing tag length...

9.1CVSS7.1AI score0.01541EPSS
Exploits0References1
Rows per page
Query Builder