high
8.8
CWE
787 119
Advisory Published
Updated

CVE-2019-11745: Buffer Overflow

First published: Thu Nov 21 2019(Updated: )

A heap-based buffer overflow was found in the NSC_EncryptUpdate() function in Mozilla nss. A remote attacker could trigger this flaw via SRTP encrypt or decrypt operations, to execute arbitrary code with the permissions of the user running the application (compiled with nss). While the attack complexity is high, the impact to confidentiality, integrity, and availability are high as well.

Credit: security@mozilla.org security@mozilla.org

Affected SoftwareAffected VersionHow to fix
redhat/nss-softokn<0:3.44.0-6.el6_10
0:3.44.0-6.el6_10
redhat/nss-softokn<0:3.14.3-23.el6_6
0:3.14.3-23.el6_6
redhat/nss<0:3.44.0-7.el7_7
0:3.44.0-7.el7_7
redhat/nss-softokn<0:3.44.0-8.el7_7
0:3.44.0-8.el7_7
redhat/nss-util<0:3.44.0-4.el7_7
0:3.44.0-4.el7_7
redhat/nss-softokn<0:3.28.3-9.el7_4
0:3.28.3-9.el7_4
redhat/nss-softokn<0:3.36.0-6.el7_5
0:3.36.0-6.el7_5
redhat/nss-softokn<0:3.36.0-6.el7_6
0:3.36.0-6.el7_6
redhat/nss<0:3.44.0-9.el8_1
0:3.44.0-9.el8_1
redhat/nss<0:3.44.0-8.el8_0
0:3.44.0-8.el8_0
IBM Data Risk Manager<=2.0.6
Mozilla Thunderbird<68.3
68.3
Mozilla Firefox ESR<68.3
68.3
redhat/nss<3.44.3
3.44.3
redhat/nss<3.47.1
3.47.1
Mozilla Firefox<71
71
debian/nss
2:3.42.1-1+deb10u5
2:3.42.1-1+deb10u8
2:3.61-1+deb11u3
2:3.87.1-1
2:3.99-1
ubuntu/firefox<71.0+
71.0+
ubuntu/firefox<71.0+
71.0+
ubuntu/firefox<71.0+
71.0+
ubuntu/firefox<71.0
71.0
ubuntu/firefox<71.0+
71.0+
ubuntu/nss<2:3.35-2ubuntu2.5
2:3.35-2ubuntu2.5
ubuntu/nss<2:3.42-1ubuntu2.3
2:3.42-1ubuntu2.3
ubuntu/nss<2:3.45-1ubuntu2.1
2:3.45-1ubuntu2.1
ubuntu/nss<2:3.28.4-0ubuntu0.14.04.5+
2:3.28.4-0ubuntu0.14.04.5+
ubuntu/nss<3.44.3<3.47.1
3.44.3
3.47.1
ubuntu/nss<2:3.28.4-0ubuntu0.16.04.8
2:3.28.4-0ubuntu0.16.04.8
ubuntu/thunderbird<1:68.4.1+
1:68.4.1+
ubuntu/thunderbird<1:68.4.1+
1:68.4.1+
ubuntu/thunderbird<68.3
68.3
ubuntu/thunderbird<1:68.7.0+
1:68.7.0+
Siemens RUGGEDCOM ROX MX5000<2.14.0
2.14.0
Siemens RUGGEDCOM ROX RX1400<2.14.0
2.14.0
Siemens RUGGEDCOM ROX RX1500<2.14.0
2.14.0
Siemens RUGGEDCOM ROX RX1501<2.14.0
2.14.0
Siemens RUGGEDCOM ROX RX1510<2.14.0
2.14.0
Siemens RUGGEDCOM ROX RX1511<2.14.0
2.14.0
Siemens RUGGEDCOM ROX RX500<2.14.0
2.14.0
Mozilla Firefox<71.0
Mozilla Firefox ESR<68.3
Mozilla Thunderbird<68.3.0
openSUSE Leap=15.1
Canonical Ubuntu Linux=16.04
Canonical Ubuntu Linux=18.04
Canonical Ubuntu Linux=19.10
Debian Debian Linux=9.0
Redhat Enterprise Linux Server Aus=6.6
Siemens Ruggedcom Rox Mx5000 Firmware<2.14.0
Siemens RUGGEDCOM ROX MX5000
Siemens Ruggedcom Rox Rx1400 Firmware<2.14.0
Siemens RUGGEDCOM ROX RX1400
Siemens Ruggedcom Rox Rx1500 Firmware<2.14.0
Siemens RUGGEDCOM ROX RX1500
Siemens Ruggedcom Rox Rx1501 Firmware<2.14.0
Siemens RUGGEDCOM ROX RX1501
Siemens Ruggedcom Rox Rx1510 Firmware<2.14.0
Siemens RUGGEDCOM ROX RX1510
Siemens Ruggedcom Rox Rx1511 Firmware<2.14.0
Siemens RUGGEDCOM ROX RX1511
Siemens Ruggedcom Rox Rx1512 Firmware<2.14.0
Siemens RUGGEDCOM ROX RX1512
Siemens Ruggedcom Rox Rx5000 Firmware<2.14.0
Siemens Ruggedcom Rox Rx5000
All of
Siemens Ruggedcom Rox Mx5000 Firmware<2.14.0
Siemens RUGGEDCOM ROX MX5000
All of
Siemens Ruggedcom Rox Rx1400 Firmware<2.14.0
Siemens RUGGEDCOM ROX RX1400
All of
Siemens Ruggedcom Rox Rx1500 Firmware<2.14.0
Siemens RUGGEDCOM ROX RX1500
All of
Siemens Ruggedcom Rox Rx1501 Firmware<2.14.0
Siemens RUGGEDCOM ROX RX1501
All of
Siemens Ruggedcom Rox Rx1510 Firmware<2.14.0
Siemens RUGGEDCOM ROX RX1510
All of
Siemens Ruggedcom Rox Rx1511 Firmware<2.14.0
Siemens RUGGEDCOM ROX RX1511
All of
Siemens Ruggedcom Rox Rx1512 Firmware<2.14.0
Siemens RUGGEDCOM ROX RX1512
All of
Siemens Ruggedcom Rox Rx5000 Firmware<2.14.0
Siemens Ruggedcom Rox Rx5000

Remedy

https://bugzilla.mozilla.org/show_bug.cgi?id=1586176

Remedy

https://hg.mozilla.org/projects/nss/rev/1e22a0c93afe9f46545560c86caedef9dab6cfda

Remedy

https://hg.mozilla.org/projects/nss/rev/60bca7c6dc6dc44579b9b3e0fb62ca3b82d92eec

Remedy

https://hg.mozilla.org/projects/nss/rev/4c20de402b3901df0cde590a46be2ba49adc028e

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Parent vulnerabilities

(Appears in the following advisories)

Peer vulnerabilities

(Found alongside the following vulnerabilities)

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203