lib32-nss
| Link | package | bugs open | bugs closed | Wiki | GitHub | web search |
| Description | Network Security Services (32-bit) |
| Version | 3.78-1 [multilib] |
Resolved
| Group | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|
| AVG-2597 | 3.72-2 | 3.73-1 | High | Fixed | |
| AVG-248 | 3.27.1-1 | 3.30.2-1 | Critical | Fixed |
| Issue | Group | Severity | Remote | Type | Description |
|---|---|---|---|---|---|
| CVE-2021-43527 | AVG-2597 | High | Yes | Arbitrary code execution | NSS (Network Security Services) versions prior to 3.73 are vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS signatures. Applications... |
| CVE-2017-5461 | AVG-248 | Critical | Yes | Arbitrary code execution | An out-of-bounds write during Base64 decoding operation has been found in the Network Security Services (NSS) library due to insufficient memory being... |
Advisories
| Date | Advisory | Group | Severity | Type |
|---|---|---|---|---|
| 03 Dec 2021 | ASA-202112-4 | AVG-2597 | High | arbitrary code execution |
| 29 May 2017 | ASA-201705-21 | AVG-248 | Critical | arbitrary code execution |