A flaw was found in the way the Mozilla Network Security Service library read uninitialized data when there was a decryption failure. A remote attacker could use this flaw to cause a denial of service for applications linked with the nss library. The oldstable distribution is not affected by this problem.