[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

RHSA-2017:2832-01 -- Redhat nss

ID: oval:org.secpod.oval:def:502146Date: (C)2017-10-03   (M)2023-12-20
Class: PATCHFamily: unix




Network Security Services is a set of libraries designed to support the cross-platform development of security-enabled client and server applications. Security Fix: * A use-after-free flaw was found in the TLS 1.2 implementation in the NSS library when client authentication was used. A malicious client could use this flaw to cause an application compiled against NSS to crash or, potentially, execute arbitrary code with the permission of the user running the application. Red Hat would like to thank the Mozilla project for reporting this issue. Upstream acknowledges Martin Thomson as the original reporter.

Platform:
Red Hat Enterprise Linux 7
Red Hat Enterprise Linux 6
Product:
nss
Reference:
RHSA-2017:2832-01
CVE-2017-7805
CVE    1
CVE-2017-7805
CPE    3
cpe:/o:redhat:enterprise_linux:7
cpe:/a:nss:network_security_services
cpe:/o:redhat:enterprise_linux:6

© SecPod Technologies