AVG-247

Package nss
Status Fixed
Severity Critical
Type arbitrary code execution
Affected 3.30-1
Fixed 3.30.1-1
Current 3.39-1 [core]
Ticket None
Created Thu Apr 20 07:49:22 2017
Issue Severity Remote Type Description
CVE-2017-5461 Critical Yes Arbitrary code execution
An out-of-bounds write during Base64 decoding operation has been found in the Network Security Services (NSS) library due to insufficient memory being...
Date Advisory Package Description
20 Apr 2017 ASA-201704-4 nss arbitrary code execution
References
https://www.mozilla.org/en-US/security/advisories/mfsa2017-10/#CVE-2017-5461
https://bugzilla.mozilla.org/show_bug.cgi?id=1344380
https://hg.mozilla.org/projects/nss/rev/ac34db053672