Lucene search
UbuntuUSN-1540-1HistoryAug 16, 2012 - 12:00 a.m.
NSS vulnerability
2012-08-1600:00:00
ubuntu.com
29
9.2 High
AI Score
Confidence
High
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.104 Low
EPSS
Percentile
95.0%
Releases
- Ubuntu 11.10
- Ubuntu 11.04
- Ubuntu 10.04
Packages
- nss - Network Security Service library
Details
Kaspar Brand discovered a vulnerability in how the Network Security
Services (NSS) ASN.1 decoder handles zero length items. If the user were
tricked into opening a specially crafted certificate, an attacker could
possibly exploit this to cause a denial of service via application crash.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 11.10 | noarch | libnss3-1d | < 3.12.9+ckbi-1.82-0ubuntu6.1 | UNKNOWN |
| Ubuntu | 11.10 | noarch | libnss3 | < 3.12.9+ckbi-1.82-0ubuntu6.1 | UNKNOWN |
| Ubuntu | 11.10 | noarch | libnss3-dbg | < 3.12.9+ckbi-1.82-0ubuntu6.1 | UNKNOWN |
| Ubuntu | 11.10 | noarch | libnss3-dev | < 3.12.9+ckbi-1.82-0ubuntu6.1 | UNKNOWN |
| Ubuntu | 11.10 | noarch | libnss3-tools | < 3.12.9+ckbi-1.82-0ubuntu6.1 | UNKNOWN |
| Ubuntu | 11.04 | noarch | libnss3-1d | < 3.12.9+ckbi-1.82-0ubuntu2.2 | UNKNOWN |
| Ubuntu | 11.04 | noarch | libnss3 | < 3.12.9+ckbi-1.82-0ubuntu2.2 | UNKNOWN |
| Ubuntu | 11.04 | noarch | libnss3-dbg | < 3.12.9+ckbi-1.82-0ubuntu2.2 | UNKNOWN |
| Ubuntu | 11.04 | noarch | libnss3-dev | < 3.12.9+ckbi-1.82-0ubuntu2.2 | UNKNOWN |
| Ubuntu | 11.04 | noarch | libnss3-tools | < 3.12.9+ckbi-1.82-0ubuntu2.2 | UNKNOWN |
References
Related
nessus
nessus
Ubuntu 12.04 LTS : nss vulnerability (USN-1540-2)
2012-08-22 00:00:00
RHEL 5 : nss and nspr (RHSA-2012:1090)
2012-07-18 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 08:54:34
openvas
openvas
CentOS Update for nspr CESA-2012:1091 centos6
2012-07-30 00:00:00
Mozilla Firefox Security Advisory (MFSA2012-39) - Linux
2021-11-11 00:00:00
CentOS Update for nspr CESA-2012:1090 centos5
2012-07-30 00:00:00
mozilla
mozilla
NSS parsing errors with zero length items — Mozilla
2012-06-05 00:00:00
oraclelinux
oraclelinux
nss, nspr, and nss-util security, bug fix, and enhancement update
2012-07-17 00:00:00
nss and nspr security, bug fix, and enhancement update
2012-07-17 00:00:00
debiancve
debiancve
CVE-2012-0441
2012-06-05 23:55:00
redhat
redhat
(RHSA-2012:1090) Moderate: nss and nspr security, bug fix, and enhancement update
2012-07-17 00:00:00
(RHSA-2012:1091) Moderate: nss, nspr, and nss-util security, bug fix, and enhancement update
2012-07-17 00:00:00
(RHSA-2012:1185) Moderate: rhev-hypervisor5 security and bug fix update
2012-08-21 00:00:00
prion
prion
Design/Logic Flaw
2012-06-05 23:55:00
debian
debian
[SECURITY] [DSA 2490-1] nss security update
2012-06-07 20:59:45
centos
centos
nspr, nss security update
2012-07-17 20:32:05
nspr, nss security update
2012-07-18 01:04:20
ubuntu
ubuntu
NSS vulnerability
2012-08-21 00:00:00
Thunderbird vulnerabilities
2012-06-27 00:00:00
Firefox vulnerabilities
2012-06-06 00:00:00
amazon
amazon
Medium: nss
2012-07-25 17:55:00
ubuntucve
ubuntucve
CVE-2012-0441
2012-06-06 00:00:00
cve
cve
CVE-2012-0441
2012-06-05 23:55:00
vmware
vmware
VMware security updates for vSphere API and ESX Service Console
2012-11-15 00:00:00
suse
suse
MozillaFirefox, MozillaThunderbird, mozilla-nss, seamonkey, xulrunner: June (important)
2012-06-19 12:08:31
Security update for Mozilla Firefox (important)
2012-06-15 22:08:23
Firefox update to 31.1esr (important)
2014-09-09 18:04:16
freebsd
freebsd
mozilla -- multiple vulnerabilities
2012-06-05 00:00:00
securityvulns
securityvulns
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2012-06-13 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-01-08 00:00:00
9.2 High
AI Score
Confidence
High
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.104 Low
EPSS
Percentile
95.0%
Related for USN-1540-1