[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244625

 
 

909

 
 

193379

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

USN-927-7 -- nspr update

ID: oval:org.secpod.oval:def:700067Date: (C)2011-01-28   (M)2021-06-02
Class: PATCHFamily: unix




USN-927-4 fixed vulnerabilities in NSS. This update provides the NSPR needed to use the new NSS. Original advisory details: Marsh Ray and Steve Dispensa discovered a flaw in the TLS and SSLv3 protocols. If an attacker could perform a man in the middle attack at the start of a TLS connection, the attacker could inject arbitrary content at the beginning of the user"s session. This update adds support for the new new renegotiation extension and will use it when the server supports it.

Platform:
Ubuntu 9.04
Product:
nspr
Reference:
USN-927-7
CPE    1
cpe:/o:ubuntu:ubuntu_linux:9.04

© SecPod Technologies