MGASA-2025-0328 Updated nspr, nss & firefox packages fix security vulnerabilities

Use-after-free in the WebRTC: Signaling component. CVE-2025-14321 Sandbox escape due to incorrect boundary conditions in the Graphics: CanvasWebGL component. CVE-2025-14322 Privilege escalation in the DOM: Notifications component. CVE-2025-14323 JIT miscompilation in the JavaScript Engine: JIT...

SUSE-RU-2021:14818-1 Recommended update for mozilla-nspr, mozilla-nss

This update for mozilla-nspr fixes the following issues: mozilla-nspr was updated to version 4.32: implement new socket option PRSockOptDontFrag support larger DNS records by increasing the default buffer size for DNS queries Lock access to PRCallOnceType members in PRCallOnce for thread safety...

nss and nspr security, bug fix, and enhancement update

An update is available for nspr, nss. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Network Security Services NSS is a set of libraries designed to support the...

SUSE-RU-2021:3116-1 Recommended update for mozilla-nspr, mozilla-nss

This update for mozilla-nspr fixes the following issues: mozilla-nspr was updated to version 4.32: implement new socket option PRSockOptDontFrag support larger DNS records by increasing the default buffer size for DNS queries Lock access to PRCallOnceType members in PRCallOnce for thread safety...

SUSE-RU-2021:3115-1 Recommended update for mozilla-nspr, mozilla-nss

This update for mozilla-nspr fixes the following issues: mozilla-nspr was updated to version 4.32: implement new socket option PRSockOptDontFrag support larger DNS records by increasing the default buffer size for DNS queries Lock access to PRCallOnceType members in PRCallOnce for thread safety...

openSUSE Security Update : MozillaThunderbird and mozilla-nspr (openSUSE-2020-1785)

This update for MozillaThunderbird and mozilla-nspr fixes the following issues : - Mozilla Thunderbird 78.4 - new: MailExtensions: browser.tabs.sendMessage API added - new: MailExtensions: messageDisplayScripts API added - changed: Yahoo and AOL mail users using password authentication will be...

SUSE-SU-2020:14418-1 Security update for mozilla-nspr, mozilla-nss

This update for mozilla-nspr, mozilla-nss fixes the following issues: mozilla-nss was updated to version 3.53.1 - CVE-2019-11745: Out-of-bounds write when passing an output buffer smaller than the block size to NSCEncryptUpdate - CVE-2020-12402: Fixed a potential side channel attack during RSA ke...

OPENSUSE-SU-2020:0854-1 Security update for mozilla-nspr, mozilla-nss

This update for mozilla-nspr, mozilla-nss fixes the following issues: mozilla-nss was updated to version 3.53 - CVE-2020-12399: Fixed a timing attack on DSA signature generation bsc1171978. - CVE-2019-17006: Added length checks for cryptographic primitives bsc1159819. Release notes:...

SUSE-SU-2019:14260-1 Security update for MozillaFirefox, mozilla-nspr, mozilla-nss

This update for MozillaFirefox, mozilla-nspr, mozilla-nss fixes the following issues: Update Firefox Extended Support Release to 68.3.0 ESR MFSA 2019-37 / bsc1158328 Security issues fixed: - CVE-2019-17008: Use-after-free in worker destruction bmo1546331. - CVE-2019-13722: Stack corruption due to...

nss and nspr security, bug fix, and enhancement update

nspr 4.21.0-2 - Rebuild 4.21.0-1 - Update to NSPR 4.21 nss 3.44.0-7 - Backport fixes from 3.44.1 3.44.0-6 - Add continuous RNG test required by FIPS - fipstest: use CKMTLS12MASTERKEYDERIVE instead of vendor specific mechanism 3.44.0-5 - Rebuild with the correct build target 3.44.0-4.1 - rebuild t...

Debian DLA-676-1 : nspr security update

The Network Security Service NSS libraries uses environment variables to configure lots of things, some of which refer to file system locations. Others can be degrade the operation of NSS in various ways, forcing compatibility modes and so on. Previously, these environment variables were not...

SUSE-SU-2016:0909-1 Security update for MozillaFirefox, mozilla-nspr, mozilla-nss

This update for MozillaFirefox, mozilla-nspr, mozilla-nss fixes the following issues: Mozilla Firefox was updated to 38.7.0 ESR bsc969894, fixing following security issues: MFSA 2016-16/CVE-2016-1952/CVE-2016-1953 Miscellaneous memory safety hazards rv:45.0 / rv:38.7 MFSA 2016-17/CVE-2016-1954...

SUSE-SU-2016:0727-1 Security update for MozillaFirefox, mozilla-nspr, mozilla-nss

This update for MozillaFirefox, mozilla-nspr, mozilla-nss fixes the following issues: Mozilla Firefox was updated to 38.7.0 ESR bsc969894, fixing following security issues: MFSA 2016-16/CVE-2016-1952/CVE-2016-1953 Miscellaneous memory safety hazards rv:45.0 / rv:38.7 MFSA 2016-17/CVE-2016-1954...

Fedora 21 : firefox-42.0-2.fc21 / nspr-4.10.10-1.fc21 / nss-3.20.1-1.0.fc21 / etc (2015-fb3360fc0a)

firefox-42.0-2.fc22 - Update to 42.0 firefox-42.0-2.fc21 - Update to 42.0 firefox-42.0-2.fc23 - Update to 42.0 nspr-4.10.10-1.fc23 - Update to NSPR41010RTM nspr-4.10.10-1.fc21 - Update to NSPR41010RTM nspr-4.10.10-1.fc22 - Update to NSPR41010RTM ---- firefox-41.0.2-2.fc21 - Update to 41.0.2...

Security update for Mozilla Firefox (important)

This update fixes the following security related issues by updating packages to a more recent version: Update of NSPR to 4.11 Update of NSS to 3.21 Update of Firefox to 44.0 MFSA 2016-01/CVE-2016-1930/CVE-2016-1931 Miscellaneous memory safety hazards MFSA 2016-02/CVE-2016-1933 bmo1231761 Out of...

SUSE-SU-2015:1981-1 Security update for MozillaFirefox, mozilla-nspr, mozilla-nss

This Mozilla Firefox, NSS and NSPR update fixes the following security and non security issues. - mozilla-nspr was updated to version 4.10.10 bsc952810 MFSA 2015-133/CVE-2015-7183 bmo1205157 NSPR memory corruption issues - mozilla-nss was updated to 3.19.2.1 bsc952810 MFSA...

SUSE-SU-2015:1978-1 Security update for MozillaFirefox, mozilla-nspr, mozilla-nss

This Mozilla Firefox, NSS and NSPR update fixes the following security and non security issues. - mozilla-nspr was updated to version 4.10.10 bsc952810 MFSA 2015-133/CVE-2015-7183 bmo1205157 NSPR memory corruption issues - mozilla-nss was updated to 3.19.2.1 bsc952810 MFSA...

SUSE-SU-2015:1268-1 Security update for MozillaFirefox, mozilla-nspr, mozilla-nss

MozillaFirefox, mozilla-nspr and mozilla-nss were updated to fix 17 security issues. For more details please check the changelogs. These security issues were fixed: - CVE-2015-2724/CVE-2015-2725/CVE-2015-2726: Miscellaneous memory safety hazards bsc935979. - CVE-2015-2728: Type confusion in Index...

[DLA 32-1] nspr security update

Package : nspr Version : 4.8.6-1+squeeze2 CVE ID : CVE-2014-1545 Abhiskek Arya discovered an out of bounds write in the cvtt function of the NetScape Portable Runtime Library which could result in the execution of arbitrary code...

nss and nspr security update

nspr 4.10.2-4 - Rebase to nspr-4.10.6 - Resolves: Bug 1116199 4.10.2-3 - Retagging - Resolves: rhbz1032466 nss 3.15.3-7 - Remove an unused patch - Related: Bug 1116199 3.15.3-6 - Fix race-condition in certificate validation - Resolves: Bug 1116199 3.15.3-5 - Remove two unused patches - Resolves:...