[RHSA-2017:2832] nss security update
Severity
Important
Affected Packages
26
CVEs
1
Network Security Services (NSS) is a set of libraries designed to support the cross-platform development of security-enabled client and server applications.
Security Fix(es):
- A use-after-free flaw was found in the TLS 1.2 implementation in the NSS library when client authentication was used. A malicious client could use this flaw to cause an application compiled against NSS to crash or, potentially, execute arbitrary code with the permission of the user running the application. (CVE-2017-7805)
Red Hat would like to thank the Mozilla project for reporting this issue. Upstream acknowledges Martin Thomson as the original reporter.
- ID
- RHSA-2017:2832
- Severity
- important
- URL
- https://access.redhat.com/errata/RHSA-2017:2832
- Published
-
2017-09-28T00:00:00
(7 years ago) - Modified
-
2017-09-28T00:00:00
(7 years ago) - Rights
- Copyright 2017 Red Hat, Inc.
- Other Advisories
-
-
ALAS-2017-911
-
ASA-201710-19
-
DSA-3987-1
-
DSA-3998-1
-
DSA-4014-1
-
ELSA-2017-2832
-
FREEBSD:1098A15B-B0F6-42B7-B5C7-8A8646E8BE07
-
FREEBSD:E71FD9D3-AF47-11E7-A633-009C02A2AB30
-
GLSA-201802-03
-
GLSA-201803-14
-
MFSA-2017-21
-
MFSA-2017-22
-
MFSA-2017-23
-
openSUSE-SU-2017:2707-1
-
openSUSE-SU-2017:2710-1
-
SUSE-SU-2017:2688-1
-
SUSE-SU-2017:2872-1
-
SUSE-SU-2017:2872-2
-
USN-3431-1
-
USN-3435-1
-
USN-3436-1
-
| Source | # ID | Name | URL |
|---|---|---|---|
| Bugzilla | 1471171 |
|
|
| RHSA | RHSA-2017:2832 |
|
|
| CVE | CVE-2017-7805 |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/redhat/nss?arch=x86_64&distro=redhat-6.9 | redhat |
 nss
|
< 3.28.4-4.el6_9 | redhat-6.9 | x86_64 | |
| Affected | pkg:rpm/redhat/nss?arch=s390x&distro=redhat-6.9 | redhat |
nss
|
< 3.28.4-4.el6_9 | redhat-6.9 | s390x | |
| Affected | pkg:rpm/redhat/nss?arch=s390&distro=redhat-6.9 | redhat |
nss
|
< 3.28.4-4.el6_9 | redhat-6.9 | s390 | |
| Affected | pkg:rpm/redhat/nss?arch=ppc64&distro=redhat-6.9 | redhat |
nss
|
< 3.28.4-4.el6_9 | redhat-6.9 | ppc64 | |
| Affected | pkg:rpm/redhat/nss?arch=ppc&distro=redhat-6.9 | redhat |
nss
|
< 3.28.4-4.el6_9 | redhat-6.9 | ppc | |
| Affected | pkg:rpm/redhat/nss?arch=i686&distro=redhat-6.9 | redhat |
nss
|
< 3.28.4-4.el6_9 | redhat-6.9 | i686 | |
| Affected | pkg:rpm/redhat/nss-tools?arch=x86_64&distro=redhat-6.9 | redhat |
nss-tools
|
< 3.28.4-4.el6_9 | redhat-6.9 | x86_64 | |
| Affected | pkg:rpm/redhat/nss-tools?arch=s390x&distro=redhat-6.9 | redhat |
nss-tools
|
< 3.28.4-4.el6_9 | redhat-6.9 | s390x | |
| Affected | pkg:rpm/redhat/nss-tools?arch=ppc64&distro=redhat-6.9 | redhat |
nss-tools
|
< 3.28.4-4.el6_9 | redhat-6.9 | ppc64 | |
| Affected | pkg:rpm/redhat/nss-tools?arch=i686&distro=redhat-6.9 | redhat |
nss-tools
|
< 3.28.4-4.el6_9 | redhat-6.9 | i686 | |
| Affected | pkg:rpm/redhat/nss-sysinit?arch=x86_64&distro=redhat-6.9 | redhat |
nss-sysinit
|
< 3.28.4-4.el6_9 | redhat-6.9 | x86_64 | |
| Affected | pkg:rpm/redhat/nss-sysinit?arch=s390x&distro=redhat-6.9 | redhat |
nss-sysinit
|
< 3.28.4-4.el6_9 | redhat-6.9 | s390x | |
| Affected | pkg:rpm/redhat/nss-sysinit?arch=ppc64&distro=redhat-6.9 | redhat |
nss-sysinit
|
< 3.28.4-4.el6_9 | redhat-6.9 | ppc64 | |
| Affected | pkg:rpm/redhat/nss-sysinit?arch=i686&distro=redhat-6.9 | redhat |
nss-sysinit
|
< 3.28.4-4.el6_9 | redhat-6.9 | i686 | |
| Affected | pkg:rpm/redhat/nss-pkcs11-devel?arch=x86_64&distro=redhat-6.9 | redhat |
nss-pkcs11-devel
|
< 3.28.4-4.el6_9 | redhat-6.9 | x86_64 | |
| Affected | pkg:rpm/redhat/nss-pkcs11-devel?arch=s390x&distro=redhat-6.9 | redhat |
nss-pkcs11-devel
|
< 3.28.4-4.el6_9 | redhat-6.9 | s390x | |
| Affected | pkg:rpm/redhat/nss-pkcs11-devel?arch=s390&distro=redhat-6.9 | redhat |
nss-pkcs11-devel
|
< 3.28.4-4.el6_9 | redhat-6.9 | s390 | |
| Affected | pkg:rpm/redhat/nss-pkcs11-devel?arch=ppc64&distro=redhat-6.9 | redhat |
nss-pkcs11-devel
|
< 3.28.4-4.el6_9 | redhat-6.9 | ppc64 | |
| Affected | pkg:rpm/redhat/nss-pkcs11-devel?arch=ppc&distro=redhat-6.9 | redhat |
nss-pkcs11-devel
|
< 3.28.4-4.el6_9 | redhat-6.9 | ppc | |
| Affected | pkg:rpm/redhat/nss-pkcs11-devel?arch=i686&distro=redhat-6.9 | redhat |
nss-pkcs11-devel
|
< 3.28.4-4.el6_9 | redhat-6.9 | i686 | |
| Affected | pkg:rpm/redhat/nss-devel?arch=x86_64&distro=redhat-6.9 | redhat |
nss-devel
|
< 3.28.4-4.el6_9 | redhat-6.9 | x86_64 | |
| Affected | pkg:rpm/redhat/nss-devel?arch=s390x&distro=redhat-6.9 | redhat |
nss-devel
|
< 3.28.4-4.el6_9 | redhat-6.9 | s390x | |
| Affected | pkg:rpm/redhat/nss-devel?arch=s390&distro=redhat-6.9 | redhat |
nss-devel
|
< 3.28.4-4.el6_9 | redhat-6.9 | s390 | |
| Affected | pkg:rpm/redhat/nss-devel?arch=ppc64&distro=redhat-6.9 | redhat |
nss-devel
|
< 3.28.4-4.el6_9 | redhat-6.9 | ppc64 | |
| Affected | pkg:rpm/redhat/nss-devel?arch=ppc&distro=redhat-6.9 | redhat |
nss-devel
|
< 3.28.4-4.el6_9 | redhat-6.9 | ppc | |
| Affected | pkg:rpm/redhat/nss-devel?arch=i686&distro=redhat-6.9 | redhat |
nss-devel
|
< 3.28.4-4.el6_9 | redhat-6.9 | i686 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |