Amazon Linux AMI : mod24_nss (ALAS-2016-714)

It was reported that +CIPHER operator in OpenSSL changes the order of a cipher. Instead of returning an error as NSS does not support cipher ordering, it returned the result of processing up to that point, which could result in requested ciphers not being enabled. C Tenable Network Security, Inc...

Low: mod24_nss

Issue Overview: It was reported that +CIPHER operator in OpenSSL changes the order of a cipher. Instead of returning an error as NSS does not support cipher ordering, it returned the result of processing up to that point, which could result in requested ciphers not being enabled. Affected Package...

Amazon Linux: Security Advisory (ALAS-2016-650)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Amazon Linux AMI : mod24_nss (ALAS-2016-650)

It was found that the parsing of the NSSCipherSuite option of mod24nss, which accepts OpenSSL-style cipherstrings, is flawed. If the option is used to disable insecure ciphersuites using the common '!' syntax, it will actually enable those insecure ciphersuites. CVE-2015-5244 C Tenable Network...

Medium: mod24_nss

Issue Overview: It was found that the parsing of the NSSCipherSuite option of mod24nss, which accepts OpenSSL-style cipherstrings, is flawed. If the option is used to disable insecure ciphersuites using the common "!" syntax, it will actually enable those insecure ciphersuites. CVE-2015-5244...

Amazon Linux: Security Advisory (ALAS-2013-254)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Amazon Linux AMI : mod24_nss (ALAS-2013-254)

A flaw was found in the way modnss handled the NSSVerifyClient setting for the per-directory context. When configured to not require a client certificate for the initial connection and only require it for a specific directory, modnss failed to enforce this requirement and allowed a client to acce...

Medium: mod24_nss

Issue Overview: A flaw was found in the way modnss handled the NSSVerifyClient setting for the per-directory context. When configured to not require a client certificate for the initial connection and only require it for a specific directory, modnss failed to enforce this requirement and allowed ...