Computer vulnerabilities of NSS

Mozilla NSS: three vulnerabilities
An attacker can use several vulnerabilities of Mozilla NSS...
6403293, bulletinjul2019, CERTFR-2019-AVI-328, CVE-2019-11719, CVE-2019-11727, CVE-2019-11729, DLA-1857-1, DLA-2388-1, DSA-4479-1, MFSA-2019-21, MFSA-2019-22, MFSA-2019-23, MFSA-2019-28, openSUSE-SU-2019:1782-1, openSUSE-SU-2019:1811-1, openSUSE-SU-2019:1813-1, openSUSE-SU-2019:1990-1, openSUSE-SU-2019:2248-1, openSUSE-SU-2019:2249-1, openSUSE-SU-2019:2251-1, openSUSE-SU-2019:2260-1, RHSA-2019:1951-01, RHSA-2019:4190-01, RHSA-2020:4076-01, SSA:2019-191-01, SUSE-SU-2019:14124-1, SUSE-SU-2019:1861-1, SUSE-SU-2019:1869-1, SUSE-SU-2019:1960-1, SUSE-SU-2019:2515-1, SUSE-SU-2019:2545-1, SUSE-SU-2019:2620-1, SUSE-SU-2020:14418-1, USN-4054-1, USN-4054-2, USN-4060-1, USN-4060-2, USN-4064-1, VIGILANCE-VUL-29715

Mozilla NSS: NULL pointer dereference via CERT_DecodeCertPackage
An attacker can force a NULL pointer to be dereferenced via CERT_DecodeCertPackage() of Mozilla NSS, in order to trigger a denial of service...
1798, CVE-2019-17007, DLA-2015-1, DLA-2388-1, DSA-4579-1, FEDORA-2019-481a343318, USN-4215-1, VIGILANCE-VUL-28825

Mozilla NSS: NULL pointer dereference via CMS
An attacker can force a NULL pointer to be dereferenced via CMS of Mozilla NSS, in order to trigger a denial of service...
bulletinjul2019, CVE-2018-18508, DLA-1704-1, DLA-2388-1, FEDORA-2019-481a343318, openSUSE-SU-2020:0008-1, RHSA-2019:1951-01, SUSE-SU-2019:3395-1, USN-3898-1, USN-3898-2, VIGILANCE-VUL-28417

Mozilla NSS: information disclosure via Cache Side-channel
An attacker can bypass access restrictions to data via Cache Side-channel of Mozilla NSS, in order to obtain sensitive information...
1485864, cpuapr2019, CVE-2018-12404, DLA-1704-1, DLA-2388-1, openSUSE-SU-2018:4117-1, openSUSE-SU-2018:4283-1, openSUSE-SU-2019:0183-1, openSUSE-SU-2019:1758-1, RHSA-2019:2237-01, SSA:2018-337-01, SUSE-SU-2018:4235-1, SUSE-SU-2018:4236-1, USN-3850-1, USN-3850-2, VIGILANCE-VUL-27938

Mozilla NSS: information disclosure via SSLv2 ServerHello Zero Random
An attacker can bypass access restrictions to data via SSLv2 ServerHello Zero Random of Mozilla NSS, in order to obtain sensitive information...
cpuapr2019, CVE-2018-12384, FEDORA-2018-1a7a5c54c2, FEDORA-2018-4a21a8ca59, JSA10917, openSUSE-SU-2018:4117-1, openSUSE-SU-2018:4283-1, RHSA-2018:2768-01, RHSA-2018:2898-01, SUSE-SU-2018:4235-1, SUSE-SU-2018:4236-1, USN-3850-1, USN-3850-2, VIGILANCE-VUL-27136

Libgcrypt: information disclosure via ECDSA Signatures Side-channel Attack
An attacker can bypass access restrictions to data via ECDSA Signatures Side-channel Attack of Libgcrypt, in order to obtain sensitive information...
bulletinjan2019, bulletinjul2018, cpuapr2019, CVE-2018-0495, DLA-1405-1, DSA-4231-1, FEDORA-2018-98ab6b4e56, openSUSE-SU-2018:2122-1, openSUSE-SU-2018:2178-1, openSUSE-SU-2018:4283-1, RHSA-2018:3221-01, RHSA-2019:2237-01, RHSA-2020:1267-01, RHSA-2020:1345-01, RHSA-2020:1461-01, SUSE-SU-2018:1993-1, SUSE-SU-2018:2089-1, SUSE-SU-2018:2452-2, SUSE-SU-2018:4235-1, SUSE-SU-2018:4236-1, USN-3689-1, USN-3689-2, USN-3692-1, USN-3692-2, USN-3850-1, USN-3850-2, VIGILANCE-VUL-26425

Mozilla NSS: use after free via Verifying Client Authentication
An attacker can force the usage of a freed memory area via Verifying Client Authentication of Mozilla NSS, in order to trigger a denial of service, and possibly to run code...
bulletinoct2017, cpuapr2018, cpuoct2018, CVE-2017-7805, DLA-1118-1, DLA-1138-1, DSA-2020-030, DSA-3987-1, DSA-3998-1, FEDORA-2017-2e7badfe67, FEDORA-2017-6e2071419d, FEDORA-2019-7f7489dc8c, MFSA-2017-21, MFSA-2017-22, openSUSE-SU-2017:2615-1, openSUSE-SU-2017:2707-1, openSUSE-SU-2017:2710-1, RHSA-2017:2831-01, RHSA-2017:2832-01, SSA:2017-271-01, SSA:2019-247-01, SUSE-SU-2017:2688-1, SUSE-SU-2017:2872-1, SUSE-SU-2017:2872-2, USN-3431-1, USN-3435-1, USN-3435-2, USN-3436-1, VIGILANCE-VUL-23976

Mozilla NSS: four vulnerabilities
An attacker can use several vulnerabilities of Mozilla NSS...
CVE-2017-11695, CVE-2017-11696, CVE-2017-11697, CVE-2017-11698, VIGILANCE-VUL-23517

Mozilla NSS: denial of service via SessionTicket Extension
An attacker can generate a fatal error via SessionTicket Extension of Mozilla NSS, in order to trigger a denial of service...
1015499, CVE-2016-9574, DSA-2020-289, MFSA-2017-10, openSUSE-SU-2017:1088-1, SUSE-SU-2017:1175-1, SUSE-SU-2017:1248-1, VIGILANCE-VUL-22534

Mozilla NSS: two vulnerabilities
An attacker can use several vulnerabilities of Mozilla NSS...
bulletinapr2017, bulletinjan2019, CERTFR-2017-AVI-126, CERTFR-2017-AVI-134, cpujan2018, cpuoct2017, CVE-2017-5461, CVE-2017-5462, DLA-906-1, DLA-946-1, DSA-2020-289, DSA-3831-1, DSA-3872-1, FEDORA-2017-31c64a0bbf, FEDORA-2017-82265ed89e, FEDORA-2017-87e23bcc34, FEDORA-2017-9042085060, MFSA-2017-10, MFSA-2017-11, MFSA-2017-12, MFSA-2017-13, openSUSE-SU-2017:1099-1, openSUSE-SU-2017:1196-1, openSUSE-SU-2017:1268-1, RHSA-2017:1100-01, RHSA-2017:1101-01, RHSA-2017:1102-01, RHSA-2017:1103-01, SA150, SSA:2017-112-01, SSA:2017-114-01, SUSE-SU-2017:1175-1, SUSE-SU-2017:1248-1, SUSE-SU-2017:1669-1, SUSE-SU-2017:2235-1, USN-3260-1, USN-3260-2, USN-3270-1, USN-3278-1, USN-3372-1, VIGILANCE-VUL-22505

Our database contains other pages. You can request a free trial to read them.

Display information about NSS:

https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS