What is the severity of RHSA-2023:1365?

The severity of RHSA-2023:1365 is classified as important due to the potential for arbitrary memory write vulnerabilities.

How do I fix RHSA-2023:1365?

To fix RHSA-2023:1365, update the affected packages to their latest versions, specifically nss and nspr to 3.79.0-17.el9_0 and 4.34.0-17.el9_0 respectively.

What products are affected by RHSA-2023:1365?

RHSA-2023:1365 affects several Red Hat packages including nss, nspr, and their corresponding debug and development packages.

What is the impact of the vulnerability in RHSA-2023:1365?

The impact of the vulnerability in RHSA-2023:1365 includes the potential for unauthorized access to sensitive memory content, which may lead to further exploitation.

Is there a workaround for RHSA-2023:1365?

Currently, the recommended mitigation for RHSA-2023:1365 is to apply the updates as there are no known effective workarounds.

Vulnerability/
RHSA-2023:1365

21/3/2023

RHSA-2023:1365: Important: nss security and bug fix update

First published: Tue Mar 21 2023(Updated: )

Network Security Services (NSS) is a set of libraries designed to support the cross-platform development of security-enabled client and server applications.<br>Security Fix(es):<br><li> nss: Arbitrary memory write via PKCS 12 (CVE-2023-0767)</li> Bug Fix(es):<br><li> In FIPS mode, nss should reject RSASSA-PSS salt lengths larger than the output size of the hash function used, or provide an indicator. (BZ#2177435)</li> <li> Need to update FIPS review comments into NSS RHEL-9. (BZ#2177876)</li> For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Affected Software	Affected Version	How to fix
redhat/nss	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nspr	<4.34.0-17.el9_0	4.34.0-17.el9_0
redhat/nspr	<4.34.0-17.el9_0	4.34.0-17.el9_0
redhat/nspr-debuginfo	<4.34.0-17.el9_0	4.34.0-17.el9_0
redhat/nspr-debuginfo	<4.34.0-17.el9_0	4.34.0-17.el9_0
redhat/nspr-devel	<4.34.0-17.el9_0	4.34.0-17.el9_0
redhat/nspr-devel	<4.34.0-17.el9_0	4.34.0-17.el9_0
redhat/nss	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-debuginfo	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-debuginfo	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-debugsource	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-debugsource	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-devel	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-devel	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-softokn	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-softokn	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-softokn-debuginfo	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-softokn-debuginfo	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-softokn-devel	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-softokn-devel	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-softokn-freebl	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-softokn-freebl	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-softokn-freebl-debuginfo	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-softokn-freebl-debuginfo	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-softokn-freebl-devel	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-softokn-freebl-devel	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-sysinit	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-sysinit-debuginfo	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-sysinit-debuginfo	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-tools	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-tools-debuginfo	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-tools-debuginfo	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-util	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-util	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-util-debuginfo	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-util-debuginfo	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-util-devel	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-util-devel	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-sysinit	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-tools	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nspr	<4.34.0-17.el9_0	4.34.0-17.el9_0
redhat/nspr-debuginfo	<4.34.0-17.el9_0	4.34.0-17.el9_0
redhat/nspr-devel	<4.34.0-17.el9_0	4.34.0-17.el9_0
redhat/nss	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-debuginfo	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-debugsource	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-devel	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-softokn	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-softokn-debuginfo	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-softokn-devel	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-softokn-freebl	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-softokn-freebl-debuginfo	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-softokn-freebl-devel	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-sysinit	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-sysinit-debuginfo	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-tools	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-tools-debuginfo	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-util	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-util-debuginfo	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nss-util-devel	<3.79.0-17.el9_0	3.79.0-17.el9_0
redhat/nspr	<4.34.0-17.el9_0.aa	4.34.0-17.el9_0.aa
redhat/nspr-debuginfo	<4.34.0-17.el9_0.aa	4.34.0-17.el9_0.aa
redhat/nspr-devel	<4.34.0-17.el9_0.aa	4.34.0-17.el9_0.aa
redhat/nss	<3.79.0-17.el9_0.aa	3.79.0-17.el9_0.aa
redhat/nss-debuginfo	<3.79.0-17.el9_0.aa	3.79.0-17.el9_0.aa
redhat/nss-debugsource	<3.79.0-17.el9_0.aa	3.79.0-17.el9_0.aa
redhat/nss-devel	<3.79.0-17.el9_0.aa	3.79.0-17.el9_0.aa
redhat/nss-softokn	<3.79.0-17.el9_0.aa	3.79.0-17.el9_0.aa
redhat/nss-softokn-debuginfo	<3.79.0-17.el9_0.aa	3.79.0-17.el9_0.aa
redhat/nss-softokn-devel	<3.79.0-17.el9_0.aa	3.79.0-17.el9_0.aa
redhat/nss-softokn-freebl	<3.79.0-17.el9_0.aa	3.79.0-17.el9_0.aa
redhat/nss-softokn-freebl-debuginfo	<3.79.0-17.el9_0.aa	3.79.0-17.el9_0.aa
redhat/nss-softokn-freebl-devel	<3.79.0-17.el9_0.aa	3.79.0-17.el9_0.aa
redhat/nss-sysinit	<3.79.0-17.el9_0.aa	3.79.0-17.el9_0.aa
redhat/nss-sysinit-debuginfo	<3.79.0-17.el9_0.aa	3.79.0-17.el9_0.aa
redhat/nss-tools	<3.79.0-17.el9_0.aa	3.79.0-17.el9_0.aa
redhat/nss-tools-debuginfo	<3.79.0-17.el9_0.aa	3.79.0-17.el9_0.aa
redhat/nss-util	<3.79.0-17.el9_0.aa	3.79.0-17.el9_0.aa
redhat/nss-util-debuginfo	<3.79.0-17.el9_0.aa	3.79.0-17.el9_0.aa
redhat/nss-util-devel	<3.79.0-17.el9_0.aa	3.79.0-17.el9_0.aa

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of RHSA-2023:1365?
The severity of RHSA-2023:1365 is classified as important due to the potential for arbitrary memory write vulnerabilities.
How do I fix RHSA-2023:1365?
To fix RHSA-2023:1365, update the affected packages to their latest versions, specifically nss and nspr to 3.79.0-17.el9_0 and 4.34.0-17.el9_0 respectively.
What products are affected by RHSA-2023:1365?
RHSA-2023:1365 affects several Red Hat packages including nss, nspr, and their corresponding debug and development packages.
What is the impact of the vulnerability in RHSA-2023:1365?
The impact of the vulnerability in RHSA-2023:1365 includes the potential for unauthorized access to sensitive memory content, which may lead to further exploitation.
Is there a workaround for RHSA-2023:1365?
Currently, the recommended mitigation for RHSA-2023:1365 is to apply the updates as there are no known effective workarounds.

agent/severity
agent/type
agent/last-modified-date
agent/softwarecombine
agent/first-publish-date
agent/remedy
agent/title
agent/references
agent/description
collector/redhat-errata
source/Red Hat
anchor-id/RHSA-2023:1365
agent/software-canonical-lookup
agent/event
agent/trending
agent/tags
agent/source
package-manager/redhat