[RHSA-2017:2832] nss security update
Severity
Important
Affected Packages
26
CVEs
1
Network Security Services (NSS) is a set of libraries designed to support the cross-platform development of security-enabled client and server applications.
Security Fix(es):
- A use-after-free flaw was found in the TLS 1.2 implementation in the NSS library when client authentication was used. A malicious client could use this flaw to cause an application compiled against NSS to crash or, potentially, execute arbitrary code with the permission of the user running the application. (CVE-2017-7805)
Red Hat would like to thank the Mozilla project for reporting this issue. Upstream acknowledges Martin Thomson as the original reporter.
- ID
- RHSA-2017:2832
- Severity
- important
- URL
- https://access.redhat.com/errata/RHSA-2017:2832
- Published
-
2017-09-28T00:00:00
(7 years ago) - Modified
-
2017-09-28T00:00:00
(7 years ago) - Rights
- Copyright 2017 Red Hat, Inc.
- Other Advisories
-
- ALAS-2017-911
- ASA-201710-19
- DSA-3987-1
- DSA-3998-1
- DSA-4014-1
- ELSA-2017-2832
- FREEBSD:1098A15B-B0F6-42B7-B5C7-8A8646E8BE07
- FREEBSD:E71FD9D3-AF47-11E7-A633-009C02A2AB30
- GLSA-201802-03
- GLSA-201803-14
- MFSA-2017-21
- MFSA-2017-22
- MFSA-2017-23
- openSUSE-SU-2017:2707-1
- openSUSE-SU-2017:2710-1
- SUSE-SU-2017:2688-1
- SUSE-SU-2017:2872-1
- SUSE-SU-2017:2872-2
- USN-3431-1
- USN-3435-1
- USN-3436-1
Source | # ID | Name | URL |
---|---|---|---|
Bugzilla | 1471171 | https://bugzilla.redhat.com/1471171 | |
RHSA | RHSA-2017:2832 | https://access.redhat.com/errata/RHSA-2017:2832 | |
CVE | CVE-2017-7805 | https://access.redhat.com/security/cve/CVE-2017-7805 |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/redhat/nss?arch=x86_64&distro=redhat-6.9 | redhat | nss | < 3.28.4-4.el6_9 | redhat-6.9 | x86_64 | |
Affected | pkg:rpm/redhat/nss?arch=s390x&distro=redhat-6.9 | redhat | nss | < 3.28.4-4.el6_9 | redhat-6.9 | s390x | |
Affected | pkg:rpm/redhat/nss?arch=s390&distro=redhat-6.9 | redhat | nss | < 3.28.4-4.el6_9 | redhat-6.9 | s390 | |
Affected | pkg:rpm/redhat/nss?arch=ppc64&distro=redhat-6.9 | redhat | nss | < 3.28.4-4.el6_9 | redhat-6.9 | ppc64 | |
Affected | pkg:rpm/redhat/nss?arch=ppc&distro=redhat-6.9 | redhat | nss | < 3.28.4-4.el6_9 | redhat-6.9 | ppc | |
Affected | pkg:rpm/redhat/nss?arch=i686&distro=redhat-6.9 | redhat | nss | < 3.28.4-4.el6_9 | redhat-6.9 | i686 | |
Affected | pkg:rpm/redhat/nss-tools?arch=x86_64&distro=redhat-6.9 | redhat | nss-tools | < 3.28.4-4.el6_9 | redhat-6.9 | x86_64 | |
Affected | pkg:rpm/redhat/nss-tools?arch=s390x&distro=redhat-6.9 | redhat | nss-tools | < 3.28.4-4.el6_9 | redhat-6.9 | s390x | |
Affected | pkg:rpm/redhat/nss-tools?arch=ppc64&distro=redhat-6.9 | redhat | nss-tools | < 3.28.4-4.el6_9 | redhat-6.9 | ppc64 | |
Affected | pkg:rpm/redhat/nss-tools?arch=i686&distro=redhat-6.9 | redhat | nss-tools | < 3.28.4-4.el6_9 | redhat-6.9 | i686 | |
Affected | pkg:rpm/redhat/nss-sysinit?arch=x86_64&distro=redhat-6.9 | redhat | nss-sysinit | < 3.28.4-4.el6_9 | redhat-6.9 | x86_64 | |
Affected | pkg:rpm/redhat/nss-sysinit?arch=s390x&distro=redhat-6.9 | redhat | nss-sysinit | < 3.28.4-4.el6_9 | redhat-6.9 | s390x | |
Affected | pkg:rpm/redhat/nss-sysinit?arch=ppc64&distro=redhat-6.9 | redhat | nss-sysinit | < 3.28.4-4.el6_9 | redhat-6.9 | ppc64 | |
Affected | pkg:rpm/redhat/nss-sysinit?arch=i686&distro=redhat-6.9 | redhat | nss-sysinit | < 3.28.4-4.el6_9 | redhat-6.9 | i686 | |
Affected | pkg:rpm/redhat/nss-pkcs11-devel?arch=x86_64&distro=redhat-6.9 | redhat | nss-pkcs11-devel | < 3.28.4-4.el6_9 | redhat-6.9 | x86_64 | |
Affected | pkg:rpm/redhat/nss-pkcs11-devel?arch=s390x&distro=redhat-6.9 | redhat | nss-pkcs11-devel | < 3.28.4-4.el6_9 | redhat-6.9 | s390x | |
Affected | pkg:rpm/redhat/nss-pkcs11-devel?arch=s390&distro=redhat-6.9 | redhat | nss-pkcs11-devel | < 3.28.4-4.el6_9 | redhat-6.9 | s390 | |
Affected | pkg:rpm/redhat/nss-pkcs11-devel?arch=ppc64&distro=redhat-6.9 | redhat | nss-pkcs11-devel | < 3.28.4-4.el6_9 | redhat-6.9 | ppc64 | |
Affected | pkg:rpm/redhat/nss-pkcs11-devel?arch=ppc&distro=redhat-6.9 | redhat | nss-pkcs11-devel | < 3.28.4-4.el6_9 | redhat-6.9 | ppc | |
Affected | pkg:rpm/redhat/nss-pkcs11-devel?arch=i686&distro=redhat-6.9 | redhat | nss-pkcs11-devel | < 3.28.4-4.el6_9 | redhat-6.9 | i686 | |
Affected | pkg:rpm/redhat/nss-devel?arch=x86_64&distro=redhat-6.9 | redhat | nss-devel | < 3.28.4-4.el6_9 | redhat-6.9 | x86_64 | |
Affected | pkg:rpm/redhat/nss-devel?arch=s390x&distro=redhat-6.9 | redhat | nss-devel | < 3.28.4-4.el6_9 | redhat-6.9 | s390x | |
Affected | pkg:rpm/redhat/nss-devel?arch=s390&distro=redhat-6.9 | redhat | nss-devel | < 3.28.4-4.el6_9 | redhat-6.9 | s390 | |
Affected | pkg:rpm/redhat/nss-devel?arch=ppc64&distro=redhat-6.9 | redhat | nss-devel | < 3.28.4-4.el6_9 | redhat-6.9 | ppc64 | |
Affected | pkg:rpm/redhat/nss-devel?arch=ppc&distro=redhat-6.9 | redhat | nss-devel | < 3.28.4-4.el6_9 | redhat-6.9 | ppc | |
Affected | pkg:rpm/redhat/nss-devel?arch=i686&distro=redhat-6.9 | redhat | nss-devel | < 3.28.4-4.el6_9 | redhat-6.9 | i686 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |