1. Home
  2. Security Advisories
  3. AlmaLinux OS
  4. ALSA-2021:4903

[ALSA-2021:4903] nss security update

Severity Critical
Affected Packages 28
CVEs 1
Info Packages References Vulnerabilities

An update for nss is now available for AlmaLinux AlmaLinux Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Network Security Services (NSS) is a set of libraries designed to support the cross-platform development of security-enabled client and server applications.

Security Fix(es):

  • nss: Memory corruption in decodeECorDsaSignature with DSA signatures (and RSA-PSS) (CVE-2021-43527)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Package Affected Version
pkg:rpm/almalinux/nss?arch=x86_64&distro=almalinux-8.5 < 3.67.0-7.el8_5
pkg:rpm/almalinux/nss?arch=i686&distro=almalinux-8.5 < 3.67.0-7.el8_5
pkg:rpm/almalinux/nss?arch=aarch64&distro=almalinux-8.5 < 3.67.0-7.el8_5
pkg:rpm/almalinux/nss-util?arch=x86_64&distro=almalinux-8.5 < 3.67.0-7.el8_5
pkg:rpm/almalinux/nss-util?arch=i686&distro=almalinux-8.5 < 3.67.0-7.el8_5
pkg:rpm/almalinux/nss-util?arch=aarch64&distro=almalinux-8.5 < 3.67.0-7.el8_5
pkg:rpm/almalinux/nss-util-devel?arch=x86_64&distro=almalinux-8.5 < 3.67.0-7.el8_5
pkg:rpm/almalinux/nss-util-devel?arch=i686&distro=almalinux-8.5 < 3.67.0-7.el8_5
pkg:rpm/almalinux/nss-util-devel?arch=aarch64&distro=almalinux-8.5 < 3.67.0-7.el8_5
pkg:rpm/almalinux/nss-tools?arch=x86_64&distro=almalinux-8.5 < 3.67.0-7.el8_5
pkg:rpm/almalinux/nss-tools?arch=aarch64&distro=almalinux-8.5 < 3.67.0-7.el8_5
pkg:rpm/almalinux/nss-sysinit?arch=x86_64&distro=almalinux-8.5 < 3.67.0-7.el8_5
pkg:rpm/almalinux/nss-sysinit?arch=aarch64&distro=almalinux-8.5 < 3.67.0-7.el8_5
pkg:rpm/almalinux/nss-softokn?arch=x86_64&distro=almalinux-8.5 < 3.67.0-7.el8_5
pkg:rpm/almalinux/nss-softokn?arch=i686&distro=almalinux-8.5 < 3.67.0-7.el8_5
pkg:rpm/almalinux/nss-softokn?arch=aarch64&distro=almalinux-8.5 < 3.67.0-7.el8_5
pkg:rpm/almalinux/nss-softokn-freebl?arch=x86_64&distro=almalinux-8.5 < 3.67.0-7.el8_5
pkg:rpm/almalinux/nss-softokn-freebl?arch=i686&distro=almalinux-8.5 < 3.67.0-7.el8_5
pkg:rpm/almalinux/nss-softokn-freebl?arch=aarch64&distro=almalinux-8.5 < 3.67.0-7.el8_5
pkg:rpm/almalinux/nss-softokn-freebl-devel?arch=x86_64&distro=almalinux-8.5 < 3.67.0-7.el8_5
pkg:rpm/almalinux/nss-softokn-freebl-devel?arch=i686&distro=almalinux-8.5 < 3.67.0-7.el8_5
pkg:rpm/almalinux/nss-softokn-freebl-devel?arch=aarch64&distro=almalinux-8.5 < 3.67.0-7.el8_5
pkg:rpm/almalinux/nss-softokn-devel?arch=x86_64&distro=almalinux-8.5 < 3.67.0-7.el8_5
pkg:rpm/almalinux/nss-softokn-devel?arch=i686&distro=almalinux-8.5 < 3.67.0-7.el8_5
pkg:rpm/almalinux/nss-softokn-devel?arch=aarch64&distro=almalinux-8.5 < 3.67.0-7.el8_5
pkg:rpm/almalinux/nss-devel?arch=x86_64&distro=almalinux-8.5 < 3.67.0-7.el8_5
pkg:rpm/almalinux/nss-devel?arch=i686&distro=almalinux-8.5 < 3.67.0-7.el8_5
pkg:rpm/almalinux/nss-devel?arch=aarch64&distro=almalinux-8.5 < 3.67.0-7.el8_5
ID
ALSA-2021:4903
Severity
critical
URL
https://errata.almalinux.org/ALSA-2021:4903.html
Published
2021-12-01T17:52:10
(2 years ago)
Modified
2021-12-03T21:33:22
(2 years ago)
Rights
Copyright 2021 AlmaLinux OS
Other Advisories
Source # ID Name URL
CVE CVE-2021-43527 https://vulners.com/cve/CVE-2021-43527
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:rpm/almalinux/nss?arch=x86_64&distro=almalinux-8.5 almalinux nss < 3.67.0-7.el8_5 almalinux-8.5 x86_64
Affected pkg:rpm/almalinux/nss?arch=i686&distro=almalinux-8.5 almalinux nss < 3.67.0-7.el8_5 almalinux-8.5 i686
Affected pkg:rpm/almalinux/nss?arch=aarch64&distro=almalinux-8.5 almalinux nss < 3.67.0-7.el8_5 almalinux-8.5 aarch64
Affected pkg:rpm/almalinux/nss-util?arch=x86_64&distro=almalinux-8.5 almalinux nss-util < 3.67.0-7.el8_5 almalinux-8.5 x86_64
Affected pkg:rpm/almalinux/nss-util?arch=i686&distro=almalinux-8.5 almalinux nss-util < 3.67.0-7.el8_5 almalinux-8.5 i686
Affected pkg:rpm/almalinux/nss-util?arch=aarch64&distro=almalinux-8.5 almalinux nss-util < 3.67.0-7.el8_5 almalinux-8.5 aarch64
Affected pkg:rpm/almalinux/nss-util-devel?arch=x86_64&distro=almalinux-8.5 almalinux nss-util-devel < 3.67.0-7.el8_5 almalinux-8.5 x86_64
Affected pkg:rpm/almalinux/nss-util-devel?arch=i686&distro=almalinux-8.5 almalinux nss-util-devel < 3.67.0-7.el8_5 almalinux-8.5 i686
Affected pkg:rpm/almalinux/nss-util-devel?arch=aarch64&distro=almalinux-8.5 almalinux nss-util-devel < 3.67.0-7.el8_5 almalinux-8.5 aarch64
Affected pkg:rpm/almalinux/nss-tools?arch=x86_64&distro=almalinux-8.5 almalinux nss-tools < 3.67.0-7.el8_5 almalinux-8.5 x86_64
Affected pkg:rpm/almalinux/nss-tools?arch=aarch64&distro=almalinux-8.5 almalinux nss-tools < 3.67.0-7.el8_5 almalinux-8.5 aarch64
Affected pkg:rpm/almalinux/nss-sysinit?arch=x86_64&distro=almalinux-8.5 almalinux nss-sysinit < 3.67.0-7.el8_5 almalinux-8.5 x86_64
Affected pkg:rpm/almalinux/nss-sysinit?arch=aarch64&distro=almalinux-8.5 almalinux nss-sysinit < 3.67.0-7.el8_5 almalinux-8.5 aarch64
Affected pkg:rpm/almalinux/nss-softokn?arch=x86_64&distro=almalinux-8.5 almalinux nss-softokn < 3.67.0-7.el8_5 almalinux-8.5 x86_64
Affected pkg:rpm/almalinux/nss-softokn?arch=i686&distro=almalinux-8.5 almalinux nss-softokn < 3.67.0-7.el8_5 almalinux-8.5 i686
Affected pkg:rpm/almalinux/nss-softokn?arch=aarch64&distro=almalinux-8.5 almalinux nss-softokn < 3.67.0-7.el8_5 almalinux-8.5 aarch64
Affected pkg:rpm/almalinux/nss-softokn-freebl?arch=x86_64&distro=almalinux-8.5 almalinux nss-softokn-freebl < 3.67.0-7.el8_5 almalinux-8.5 x86_64
Affected pkg:rpm/almalinux/nss-softokn-freebl?arch=i686&distro=almalinux-8.5 almalinux nss-softokn-freebl < 3.67.0-7.el8_5 almalinux-8.5 i686
Affected pkg:rpm/almalinux/nss-softokn-freebl?arch=aarch64&distro=almalinux-8.5 almalinux nss-softokn-freebl < 3.67.0-7.el8_5 almalinux-8.5 aarch64
Affected pkg:rpm/almalinux/nss-softokn-freebl-devel?arch=x86_64&distro=almalinux-8.5 almalinux nss-softokn-freebl-devel < 3.67.0-7.el8_5 almalinux-8.5 x86_64
Affected pkg:rpm/almalinux/nss-softokn-freebl-devel?arch=i686&distro=almalinux-8.5 almalinux nss-softokn-freebl-devel < 3.67.0-7.el8_5 almalinux-8.5 i686
Affected pkg:rpm/almalinux/nss-softokn-freebl-devel?arch=aarch64&distro=almalinux-8.5 almalinux nss-softokn-freebl-devel < 3.67.0-7.el8_5 almalinux-8.5 aarch64
Affected pkg:rpm/almalinux/nss-softokn-devel?arch=x86_64&distro=almalinux-8.5 almalinux nss-softokn-devel < 3.67.0-7.el8_5 almalinux-8.5 x86_64
Affected pkg:rpm/almalinux/nss-softokn-devel?arch=i686&distro=almalinux-8.5 almalinux nss-softokn-devel < 3.67.0-7.el8_5 almalinux-8.5 i686
Affected pkg:rpm/almalinux/nss-softokn-devel?arch=aarch64&distro=almalinux-8.5 almalinux nss-softokn-devel < 3.67.0-7.el8_5 almalinux-8.5 aarch64
Affected pkg:rpm/almalinux/nss-devel?arch=x86_64&distro=almalinux-8.5 almalinux nss-devel < 3.67.0-7.el8_5 almalinux-8.5 x86_64
Affected pkg:rpm/almalinux/nss-devel?arch=i686&distro=almalinux-8.5 almalinux nss-devel < 3.67.0-7.el8_5 almalinux-8.5 i686
Affected pkg:rpm/almalinux/nss-devel?arch=aarch64&distro=almalinux-8.5 almalinux nss-devel < 3.67.0-7.el8_5 almalinux-8.5 aarch64
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date