It was discovered that the Mozilla Network Security Service library incorrectly handled certain ASN.1 lengths. A remote attacker could possibly use this issue to perform a data-smuggling attack.