[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244625

 
 

909

 
 

193379

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

CESA-2017:2832 -- centos 7 nss

ID: oval:org.secpod.oval:def:204564Date: (C)2017-10-05   (M)2022-10-10
Class: PATCHFamily: unix




Network Security Services is a set of libraries designed to support the cross-platform development of security-enabled client and server applications. Security Fix: * A use-after-free flaw was found in the TLS 1.2 implementation in the NSS library when client authentication was used. A malicious client could use this flaw to cause an application compiled against NSS to crash or, potentially, execute arbitrary code with the permission of the user running the application. Red Hat would like to thank the Mozilla project for reporting this issue. Upstream acknowledges Martin Thomson as the original reporter.

Platform:
CentOS 7
Product:
nss
Reference:
CESA-2017:2832
CVE-2017-7805
CVE    1
CVE-2017-7805
CPE    2
cpe:/a:nss:network_security_services
cpe:/o:centos:centos:7

© SecPod Technologies