CVE-2019-11745

When encrypting with a block cipher, if a call to NSCEncryptUpdate was made with data smaller than the block size, a small out of bounds write could occur. This could have caused heap corruption and a potentially exploitable crash. This vulnerability affects Thunderbird 68.3, Firefox ESR 68.3, an...

CVE-2019-11745

When encrypting with a block cipher, if a call to NSCEncryptUpdate was made with data smaller than the block size, a small out of bounds write could occur. This could have caused heap corruption and a potentially exploitable crash. This vulnerability affects Thunderbird 68.3, Firefox ESR 68.3, an...

nss, nss-softokn, nss-util security update

nss 3.44.0-7 - Increase timeout on sslgtest so that slow platforms can complete when running on a busy system. 3.44.0-6 - back out out-of-bounds patch patch for nss-softokn. - Fix segfault on empty or malformed ecdh keys 1777712 3.44.0-5 - Fix out-of-bounds write in NSCEncryptUpdate 1775910...

nss-softokn security update

3.44.0-6.0.1 - Add fips140-2 DSA Known Answer Test fix Orabug 26696773 - Add fips140-2 ECDSA/RSA/DSA Pairwise Consistency Test fix Orabug 26617866, Orabug 26617833, Orabug 26617780 3.44.0-6 - Fix out-of-bounds write in NSCEncryptUpdate 1775909...

nss security update

3.44.0-9 - Fix out-of-bounds write in NSCEncryptUpdate 1775912...