26 matches found
EUVD-2006-4328
Malware in sbrugna...
Mozilla Network Security Service (NSS): TLS RSA decryption timing attack
Background The Mozilla Network Security Service is a library implementing security features like SSL v.2/v.3, TLS, PKCS 5, PKCS 7, PKCS 11, PKCS 12, S/MIME and X.509 certificates. Description A vulnerability has been discovered in Mozilla Network Security Service NSS. Please review the CVE...
GLSA-202508-04 : Mozilla Network Security Service (NSS): TLS RSA decryption timing attack
The remote host is affected by the vulnerability described in GLSA-202508-04 Mozilla Network Security Service NSS: TLS RSA decryption timing attack A vulnerability has been discovered in Mozilla Network Security Service NSS. Please review the CVE identifier referenced below for details. Tenable h...
Mozilla Network Security Service (NSS): Multiple Vulnerabilities
Background The Mozilla Network Security Service is a library implementing security features like SSL v.2/v.3, TLS, PKCS 5, PKCS 7, PKCS 11, PKCS 12, S/MIME and X.509 certificates. Description Multiple vulnerabilities have been discovered in Mozilla Network Security Service NSS. Please review the...
GLSA-202212-05 : Mozilla Network Security Service (NSS): Multiple Vulnerabilities
The remote host is affected by the vulnerability described in GLSA-202212-05 Mozilla Network Security Service NSS: Multiple Vulnerabilities - NSS Network Security Services versions prior to 3.73 or 3.68.1 ESR are vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS signatures...
Mozilla Network Security Service (NSS): Denial of service
Background The Mozilla Network Security Service NSS is a library implementing security features like SSL v.2/v.3, TLS, PKCS 5, PKCS 7, PKCS 11, PKCS 12, S/MIME and X.509 certificates. Description A flaw was found in the way Mozilla Network Security Service NSS handled CCS ChangeCipherSpec message...
GLSA-202008-08 : Mozilla Network Security Service (NSS): Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-202008-08 Mozilla Network Security Service NSS: Multiple vulnerabilities Multiple vulnerabilities have been discovered in NSS. Please review the CVE identifiers referenced below for details. Impact : An attacker may be able to...
Mozilla Network Security Service (NSS): Multiple vulnerabilities
Background The Mozilla Network Security Service NSS is a library implementing security features like SSL v.2/v.3, TLS, PKCS 5, PKCS 7, PKCS 11, PKCS 12, S/MIME and X.509 certificates. Description Multiple vulnerabilities have been discovered in NSS. Please review the CVE identifiers referenced...
GLSA-202003-37 : Mozilla Network Security Service: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-202003-37 Mozilla Network Security Service: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Mozilla Network Security Service NSS. Please review the CVE identifiers referenced below for details. Impact : A...
[SECURITY] [DLA 2008-1] nss security update
Package : nss Version : 2:3.26-1+debu8u7 CVE ID : CVE-2019-11745 A vulnerability has been discovered in nss, the Mozilla Network Security Service library. An out-of-bounds write can occur when passing an output buffer smaller than the block size to NSCEncryptUpdate. For Debian 8 "Jessie", this...
GLSA-201705-04 : Mozilla Network Security Service (NSS): Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-201705-04 Mozilla Network Security Service NSS: Multiple vulnerabilities Multiple vulnerabilities have been discovered in NSS. Please review the CVE identifiers referenced below for details. Impact : A remote attacker could possib...
GLSA-201701-46 : Mozilla Network Security Service (NSS): Multiple vulnerabilities (Logjam) (SLOTH)
The remote host is affected by the vulnerability described in GLSA-201701-46 Mozilla Network Security Service NSS: Multiple vulnerabilities Multiple vulnerabilities have been discovered in NSS. Please review the CVE identifiers and technical papers referenced below for details. Impact : Remote...
Mozilla Network Security Service (NSS): Multiple vulnerabilities
Background The Mozilla Network Security Service NSS is a library implementing security features like SSL v.2/v.3, TLS, PKCS 5, PKCS 7, PKCS 11, PKCS 12, S/MIME and X.509 certificates. Description Multiple vulnerabilities have been discovered in NSS. Please review the CVE identifiers and technical...
Debian DLA-354-1 : nss security update
Several vulnerabilities have been discovered in nss, the Mozilla Network Security Service library. The Common Vulnerabilities and Exposures project identifies the following problems : CVE-2015-7181 The secasn1dparseleaf function improperly restricts access to an unspecified data structure, which...
[SECURITY] [DSA 3336-1] nss security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3336-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso August 17, 2015 https://www.debian.org/security/faq -...
DSA-3186-1 nss - security update
Bulletin has no description...
[SECURITY] [DSA 2994-1] nss security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2994-1 [email protected] http://www.debian.org/security/ Raphael Geissert July 31, 2014 http://www.debian.org/security/faq -...
DSA-2994-1 nss - security update
Bulletin has no description...
GLSA-201406-19 : Mozilla Network Security Service: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-201406-19 Mozilla Network Security Service: Multiple vulnerabilities Multiple vulnerabilities have been discovered in the Mozilla Network Security Service. Please review the CVE identifiers referenced below for more details about...
[BSA-091] Security Update for nss
intrigeri uploaded new packages for nss which fixed the following security problems: CVE-2013-1739 DSA-2790-1 A flaw was found in the way the Mozilla Network Security Service library nss read uninitialized data when there was a decryption failure. A remote attacker could use this flaw to cause a...