31 matches found
Fedora 43 : firefox / nss (2026-c0a4f03150)
The remote Fedora 43 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2026-c0a4f03150 advisory. Update NSS to 3.122.1 Update to Firefox 150.0 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note...
Fedora 42 : firefox / nss (2026-69538c9f7e)
The remote Fedora 42 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2026-69538c9f7e advisory. Update NSS to 3.122.1 Update to Firefox 150.0 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note...
Fedora 44 : nss (2026-367d9a0b61)
The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-367d9a0b61 advisory. Update NSS to 3.121.0 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for...
SUSE-SU-2026:0814-1 Security update for mozilla-nss
This update for mozilla-nss fixes the following issues: Update to NSS 3.112.3: CVE-2026-2781: Avoid integer overflow in platform-independent ghash bsc1258568...
CLSA-2024-1705941381 Update of ca-certificates
Update to CKBI 2.64 from NSS 3.95 - Updated: - Certificate "Autoridad de Certificacion Firmaprofesional CIF A62634068" - Removed: - Certificate "E-Tugra Certification Authority" - Certificate "Hongkong Post Root CA 1" - Certificate "Symantec Class 1 Public Primary Certification Authority - G6" -...
SUSE-SU-2022:2536-1 Security update for mozilla-nspr, mozilla-nss
This update for mozilla-nspr, mozilla-nss fixes the following issues: mozilla-nss was updated to fix various issues: FIPS 140-3 enablement patches were backported from SUSE Linux Enterprise 15. - FIPS: add on-demand integrity tests through sftkFIPSRepeatIntegrityCheck bsc1198980. - FIPS: mark...
SUSE-SU-2022:2533-2 Security update for mozilla-nss
This update for mozilla-nss fixes the following issues: Various FIPS 140-3 related fixes were backported from SUSE Linux Enterprise 15 SP4: - Makes the PBKDF known answer test compliant with NIST SP800-132. bsc1192079. - FIPS: Add on-demand integrity tests through sftkFIPSRepeatIntegrityCheck...
CLSA-2021-1638804170 Fixed CVE-2021-43527 in nss
CVE-2021-43527: Fix memory corruption in decodeECorDsaSignature with DSA signatures and RSA-PSS - Update to CKBI 2.50 from NSS 3.67 - Removing: - Certificate "Verisign Class 3 Public Primary Certification Authority - G3" - Certificate "AddTrust Low-Value Services Root" - Certificate "AddTrust...
OPENSUSE-SU-2019:1811-1 Security update for MozillaFirefox
This update for MozillaFirefox, mozilla-nss fixes the following issues: MozillaFirefox to version ESR 60.8: - CVE-2019-9811: Sandbox escape via installation of malicious language pack bsc1140868. - CVE-2019-11711: Script injection within domain through inner window reuse bsc1140868. -...
OPENSUSE-SU-2019:1782-1 Security update for MozillaFirefox
This update for MozillaFirefox, mozilla-nss fixes the following issues: MozillaFirefox to version ESR 60.8: - CVE-2019-9811: Sandbox escape via installation of malicious language pack bsc1140868. - CVE-2019-11711: Script injection within domain through inner window reuse bsc1140868. -...
SUSE-SU-2019:1861-3 Security update for MozillaFirefox
This update for MozillaFirefox, mozilla-nss fixes the following issues: MozillaFirefox to version ESR 60.8: - CVE-2019-9811: Sandbox escape via installation of malicious language pack bsc1140868. - CVE-2019-11711: Script injection within domain through inner window reuse bsc1140868. -...
SUSE SLES12 Security Update : apache2-mod_nss (SUSE-SU-2018:3572-1)
This update for apache2-modnss fixes the following issues : Due to the update of mozilla-nss apache2-modnss needs to be updated to change to the SQLite certificate database, which is now the default bsc1108771. Because of that this update is tagged as security, to reach customers that only instal...
SUSE-SU-2018:3572-1 Security update for apache2-mod_nss
This update for apache2-modnss fixes the following issues: Due to the update of mozilla-nss apache2-modnss needs to be updated to change to the SQLite certificate database, which is now the default bsc1108771. Because of that this update is tagged as security, to reach customers that only install...
firefox security update
60.2.0-1.0.1 - fix LDLIBRARYPATH - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one 60.2.0-1 - Update to 60.2.0 ESR 60.1.0-9 - Do not set user agent rhbz1608065 - GTK dialogs are localized now rhbz1619373 - JNLP association works again rhbz1607457 60.1.0-8 - Fixed...
CVE-2016-9574
nss before version 3.30 is vulnerable to a remote denial of service during the session handshake when using SessionTicket extension and ECDHE-ECDSA...
CVE-2017-7502
Null pointer dereference vulnerability in NSS since 3.24.0 was found when server receives empty SSLv2 messages resulting into denial of service by remote attacker...
NSS -- multiple vulnerabilities
Mozilla Foundation reports: An out-of-bounds write during Base64 decoding operation in the Network Security Services NSS library due to insufficient memory being allocated to the buffer. This results in a potentially exploitable crash. The NSS library has been updated to fix this issue to address...
Fedora 23 : ca-certificates (2015-e52d4bd4c0)
This is an update to the set of CA certificates version 2.5 as released with NSS version 3.19.3 However, as in previous versions of the ca-certificates package, the CA list has been modified to keep several legacy CAs still trusted for compatibility reasons. Please refer to the project URL for...
DEBIAN-CVE-2016-2834
Mozilla Network Security Services NSS before 3.23, as used in Mozilla Firefox before 47.0, allows remote attackers to cause a denial of service memory corruption and application crash or possibly have unspecified other impact via unknown vectors...
Fedora 23 : ca-certificates-2015.2.6-1.0.fc23 (2015-f9e5ca4e6a)
This is an update to the set of CA certificates version 2.6 as released with NSS version 3.21 However, as in previous versions of the ca-certificates package, the CA list has been modified to keep several legacy CAs still trusted for compatibility reasons. Please refer to the project URL for...