Several vulnerabilities were discovered in NSS, a set of cryptographic
libraries, which may result in side channel/timing attacks or denial
of service
For the stable distribution (buster), these problems have been fixed in
version 2:3421-1+deb10u3
We recommend that you upgrade your nss packages
For the detailed security status of nss please re ...
Several security issues were fixed in NSS ...
Firefox could be made to crash or run programs as your login if it
opened a malicious website ...
Synopsis
Moderate: nss and nspr security, bug fix, and enhancement update
Type/Severity
Security Advisory: Moderate
Topic
An update for nss, nss-softokn, nss-util, and nspr is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Moderate ...
Synopsis
Low: OpenShift Virtualization 242 Images
Type/Severity
Security Advisory: Low
Topic
Red Hat OpenShift Virtualization release 242 is now available with updates to packages and images that fix several bugs and add enhancementsRed Hat Product Security has rated this update as having a security im ...
Synopsis
Moderate: nss and nspr security, bug fix, and enhancement update
Type/Severity
Security Advisory: Moderate
Topic
An update for nss and nspr is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability ...
Synopsis
Low: OpenShift Container Platform 4340 security and bug fix update
Type/Severity
Security Advisory: Low
Topic
An update is now available for Red Hat OpenShift Container Platform 43Red Hat Product Security has rated this update as having a security impact of Low A Common Vulnerability Scoring S ...
Synopsis
Moderate: security update - Red Hat Ansible Tower 36 runner release (CVE-2019-18874)
Type/Severity
Security Advisory: Moderate
Topic
Red Hat Ansible Tower 36 runner release (CVE-2019-18874)
Description
Updated python-psutil version to 566 inside ansible-runner container(CVE-20 ...
Synopsis
Moderate: security update - Red Hat Ansible Tower 37 runner release (CVE-2019-18874)
Type/Severity
Security Advisory: Moderate
Topic
Red Hat Ansible Tower 37 runner release (CVE-2019-18874)
Description
Updated python-psutil version to 566 inside ansible-runner container (CVE-2 ...
When importing a curve25519 private key in PKCS#8format with leading 0x00 bytes, it is possible to trigger an out-of-bounds read in the Network Security Services (NSS) library This could lead to information disclosure This vulnerability affects Firefox ESR < 608, Firefox < 68, and Thunderbird < 608 (CVE-2019-11719)
A vulnerability exi ...
When importing a curve25519 private key in PKCS#8format with leading 0x00 bytes, it is possible to trigger an out-of-bounds read in the Network Security Services (NSS) library This could lead to information disclosure This vulnerability affects Firefox ESR < 608, Firefox < 68, and Thunderbird < 608 (CVE-2019-11719)
A vulnerability exi ...
Mozilla Foundation Security Advisory 2020-01
Security Vulnerabilities fixed in Firefox 72
Announced
January 7, 2020
Impact
high
Products
Firefox
Fixed in
Firefox 72
...
A security issue has been found in the NSS component of Firefox before 720 After a HelloRetryRequest has been sent, the client may negotiate a lower protocol that TLS 13, resulting in an invalid state transition in the TLS State Machine If the client gets into this state, incoming Application Data records will be ignored ...