Debian Security Update DSA-3998 nss - security update

Thread starter LinuxBot
Start date Oct 12, 2017

LinuxBot

Member

Oct 12, 2017

#1

Martin Thomson discovered that nss, the Mozilla Network Security Service library, is prone to a use-after-free vulnerability in the TLS 1.2 implementation when handshake hashes are generated. A remote attacker can take advantage of this flaw to cause an application using the nss library to crash, resulting in a denial of service, or potentially to execute arbitrary code.

Continue reading...

You must log in or register to reply here.

Share:

Facebook X (Twitter) Reddit Pinterest Tumblr WhatsApp Email Link

Staff online

wizardfromoz
Administrator

Members online

Total: 691 (members: 6, guests: 685)

Latest posts

The Soapbox: Cut The Complaining. IMHO Thanks Are In Order.
- Latest: Sherri is a Cat
- 7 minutes ago
Forum Assistance
[info] Easy way to sort alphabetically a mess of words in a text file
- Latest: JasKinasis
- 50 minutes ago
Command Line
Solved Suddenly Can't Visit Linux.org On my Laptop (No problems with my Android phone)
- Latest: GFdeb12
- Today at 7:25 AM
Linux Networking
How To Restore A Timeshift Snapshot From An External HDD.
- Latest: wizardfromoz
- Today at 7:02 AM
General Linux Questions
VPN Help
- Latest: f33dm3bits
- Today at 6:54 AM
Linux Security