845 matches found
RHSA-2009:1184 Red Hat Security Advisory: nspr and nss security and bug fix update
Bulletin has no description...
RHSA-2013:1135 Red Hat Security Advisory: nss and nspr security, bug fix, and enhancement update
Bulletin has no description...
RHSA-2013:1144 Red Hat Security Advisory: nss, nss-util, nss-softokn, and nspr security update
Bulletin has no description...
OPENSUSE-SU-2024:10297-1 mozilla-nspr-32bit-4.12-2.1 on GA media
These are all security issues fixed in the mozilla-nspr-32bit-4.12-2.1 package on the GA media of openSUSE Tumbleweed...
RHEL 6 : nspr (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - nspr: Memory allocation issue related to PRprintf functions CVE-2016-1951 Note that Nessus has not tested for this...
RHEL 5 : nspr (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - nspr: Memory allocation issue related to PRprintf functions CVE-2016-1951 Note that Nessus has not tested for this...
RHEL 4 : nspr (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 4 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - nspr: heap-buffer overflow in PLARENAALLOCATE MFSA 2015-133 CVE-2015-7183 Note that Nessus has not tested for this...
RHEL 7 : nspr (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - nspr: Memory allocation issue related to PRprintf functions CVE-2016-1951 Note that Nessus has not tested for this...
RHEL 5 : nspr (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - nspr: Memory allocation issue related to PRprintf functions CVE-2016-1951 Note that Nessus has not tested for this...
RHEL 6 : nspr (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - nspr: Memory allocation issue related to PRprintf functions CVE-2016-1951 Note that Nessus has not tested for this...
Amazon Linux 2023 : nspr, nspr-devel, nss (ALAS2023-2024-523)
It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2024-523 advisory. Multiple NSS NIST curves were susceptible to a side-channel attack known as Minerva. This attack could potentially allow an attacker to recover the private key. This vulnerability affects Firefox 121...
Amazon Linux 2023 : nspr, nspr-devel, nss (ALAS2023-2024-507)
It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2024-507 advisory. A vulnerability was found in SQLite SQLite3 up to 3.43.0 and classified as critical. This issue affects the function sessionReadRecord of the file ext/session/sqlite3session.c of the component make...
Amazon Linux 2023 : nspr, nspr-devel, nss (ALAS2023-2024-492)
It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2024-492 advisory. It was discovered that the numerical library used in NSS for RSA cryptography leaks information whether high order bits of the RSA decryption result are zero. This information can be used to mount a...
Oracle Linux 7 : nss, / nss-softokn, / nss-util, / and / nspr (ELSA-2019-2237)
The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2019-2237 advisory. nspr 4.21.0-1 - Rebase to NSPR 4.21 nss 3.44.0-4 - Fix certutil man page - Fix extracting a public key from a private key for dh, ec, and dsa 3.44.0-3 ...
Security Bulletin: Vulnerabilities in Network Security (NSS) and Netscape Portable Runtime (NSPR) affect IBM SAN Volume Controller and Storwize Family (CVE-2015-7181 CVE-2015-7182 CVE-2015-7183)
Summary Vulnerabilities in Network Security NSS and Netscape Portable Runtime NSPR affect the IBM SAN Volume Controller and Storwize Family. Though the CVE descriptions below document the vunerbilities in the context of the Mozilla product, the IBM SAN Volume Controller and Storwize Family of...
Amazon Linux 2023 : nspr, nspr-devel, nss (ALAS2023-2023-031)
It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-031 advisory. NSS Network Security Services up to and including 3.73 is vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS signatures. Applications using NSS for handling signatures encoded within...
Amazon Linux 2023 : nspr, nspr-devel, nss (ALAS2023-2023-124)
It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-124 advisory. firefox-esr , thunderbird and nss only are affected by this package. CVE-2023-0767 Tenable has extracted the preceding description block directly from the tested product security advisory. Note that...
Debian: Security Advisory (DLA-676-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian: Security Advisory (DLA-32-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian: Security Advisory (DLA-513-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...