Latest mozilla nss Vulnerabilities

MFSA2023-53
Timing side-channel in PKCS#1 v1.5 decryption depadding code
Mozilla NSS<3.61
CVE-2023-4421
The NSS code used for checking PKCS#1 v1.5 was leaking information useful in mounting Bleichenbacher-like attacks. Both the overall correctness of the padding as well as the length of the encrypted me...
Mozilla NSS<3.6.1
Mozilla NSS<3.61
ubuntu/nss<2:3.98-0ubuntu0.20.04.1
ubuntu/nss<3.61
debian/nss<=2:3.42.1-1+deb10u5
redhat/nss<3.61
MFSA2021-51
Memory corruption in NSS via DER-encoded DSA and RSA-PSS signatures
<3.68.1
<3.73
CVE-2021-43527
A flaw was found in the way NSS verifies certificates. That will happen both when client reads the Certificate message from the server or when server is configured to ask for client certificates and t...
redhat/nss<0:3.44.0-12.el6_10
redhat/nss<0:3.67.0-4.el7_9
redhat/nss<0:3.28.4-2.el7_3
redhat/nss<0:3.28.4-18.el7_4
redhat/nss<0:3.36.0-10.2.el7_6
redhat/nss<0:3.44.0-8.el7_7
and 22 more
CVE-2021-42739
A heap-based buffer overflow flaw was found in the Linux kernel FireDTV media card driver, where the user calls the CA_SEND_MSG ioctl. This flaw allows a local user of the host machine to crash the sy...
Linux Linux kernel<=5.14.13
Fedoraproject Fedora=33
Fedoraproject Fedora=34
Fedoraproject Fedora=35
Debian Debian Linux=9.0
Mozilla NSS=v8r12
and 131 more
CVE-2020-12403
Mozilla Network Security Services (NSS), as used in Mozilla Firefox could allow a remote attacker to obtain sensitive information, caused by the implementation of CHACHA20-POLY1305 decryption with und...
redhat/nss<3.55
redhat/nspr<0:4.25.0-2.el7_9
redhat/nss<0:3.53.1-3.el7_9
redhat/nss-softokn<0:3.53.1-6.el7_9
redhat/nss-util<0:3.53.1-1.el7_9
redhat/nss-softokn<0:3.28.3-10.el7_4
and 10 more
CVE-2016-5285
A Null pointer dereference vulnerability exists in Mozilla Network Security Services due to a missing NULL check in PK11_SignWithSymKey / ssl3_ComputeRecordMACConstantTime, which could let a remote ma...
Mozilla NSS<3.26
Debian Debian Linux=8.0
Debian Debian Linux=9.0
Debian Debian Linux=10.0
Redhat Enterprise Linux=5.0
Redhat Enterprise Linux=6.0
and 98 more

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203