Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2013-5607HistoryNov 20, 2013 - 2:12 p.m.
CVE-2013-5607
2013-11-2014:12:50
Debian Security Bug Tracker
security-tracker.debian.org
15
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.101 Low
EPSS
Percentile
94.9%
Integer overflow in the PL_ArenaAllocate function in Mozilla Netscape Portable Runtime (NSPR) before 4.10.2, as used in Firefox before 25.0.1, Firefox ESR 17.x before 17.0.11 and 24.x before 24.1.1, and SeaMonkey before 2.22.1, allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted X.509 certificate, a related issue to CVE-2013-1741.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | nspr | < 2:4.10.2-1 | nspr_2:4.10.2-1_all.deb |
| Debian | 11 | all | nspr | < 2:4.10.2-1 | nspr_2:4.10.2-1_all.deb |
| Debian | 999 | all | nspr | < 2:4.10.2-1 | nspr_2:4.10.2-1_all.deb |
| Debian | 13 | all | nspr | < 2:4.10.2-1 | nspr_2:4.10.2-1_all.deb |
Related
nvd
nvd
CVE-2013-5607
2013-11-20 14:12:50
CVE-2013-1741
2013-11-18 05:23:57
ubuntucve
ubuntucve
CVE-2013-5607
2013-11-20 00:00:00
CVE-2013-1741
2013-11-14 00:00:00
prion
prion
Integer overflow
2013-11-20 14:12:00
Integer overflow
2013-11-18 05:23:00
cve
cve
CVE-2013-5607
2013-11-20 14:12:50
CVE-2013-1741
2013-11-18 05:23:57
cvelist
cvelist
CVE-2013-5607
2013-11-20 11:00:00
CVE-2013-1741
2013-11-16 15:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: nspr-4.10.2-1.fc20
2013-12-14 02:52:25
[SECURITY] Fedora 20 Update: nspr-4.10.6-1.fc20
2014-06-13 05:33:21
[SECURITY] Fedora 18 Update: nspr-4.10.2-1.fc18
2013-12-13 05:03:40
openvas
openvas
Fedora Update for nspr FEDORA-2013-22756
2014-02-05 00:00:00
Fedora Update for nspr FEDORA-2013-22756
2014-02-05 00:00:00
Ubuntu Update for thunderbird USN-2032-1
2013-11-26 00:00:00
nessus
nessus
Firefox ESR 24.x < 24.1.1 NSS and NSPR Multiple Vulnerabilities (Mac OS X)
2013-11-18 00:00:00
Mozilla Thunderbird < 24.1.1 NSS and NSPR Multiple Vulnerabilities
2013-11-22 00:00:00
Firefox ESR 24.x < 24.1.1 NSS and NSPR Multiple Vulnerabilities
2013-11-18 00:00:00
suse
suse
Security update for mozilla-nspr, mozilla-nss (important)
2013-12-02 20:04:14
ubuntu
ubuntu
Firefox vulnerabilities
2013-11-20 00:00:00
Thunderbird vulnerabilities
2013-11-21 00:00:00
NSPR vulnerability
2014-01-23 00:00:00
mageia
mageia
Updated firefox, rootcerts, nspr & nss packages fix security vulnerabilities
2013-11-21 00:54:49
oraclelinux
oraclelinux
nss, nspr, and nss-util security update
2013-12-12 00:00:00
nss and nspr security, bug fix, and enhancement update
2013-12-05 00:00:00
nss, nss-util, and nss-softokn security, bug fix, and enhancement update
2014-12-02 00:00:00
securityvulns
securityvulns
Mozilla nss security vulnerabilities
2013-11-26 00:00:00
ibm
ibm
mozilla
mozilla
Miscellaneous Network Security Services (NSS) vulnerabilities — Mozilla
2013-11-15 00:00:00
debian
debian
[SECURITY] [DSA 2820-1] nspr security update
2013-12-17 07:14:58
[SECURITY] [DSA 2994-1] nss security update
2014-07-31 11:51:32
[DLA 23-1] nss security update
2014-07-31 11:23:33
debiancve
debiancve
CVE-2013-1741
2013-11-18 05:23:57
amazon
amazon
Important: nss
2013-12-17 21:31:00
Important: nspr
2013-12-17 21:31:00
centos
centos
nspr, nss security update
2013-12-13 00:04:31
nspr, nss security update
2013-12-05 17:45:58
redhat
redhat
(RHSA-2013:1791) Important: nss and nspr security, bug fix, and enhancement update
2013-12-05 00:00:00
(RHSA-2013:1829) Important: nss, nspr, and nss-util security update
2013-12-12 00:00:00
(RHSA-2014:0041) Important: rhev-hypervisor6 security update
2014-01-21 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-05-02 05:00:22
Denial Of Service (DoS)
2019-05-02 05:00:20
Authentication Bypass
2019-05-02 05:00:22
gentoo
gentoo
Mozilla Network Security Service: Multiple vulnerabilities
2014-06-21 00:00:00
osv
osv
nss - security update
2014-07-31 00:00:00
nss - security update
2014-07-31 00:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.101 Low
EPSS
Percentile
94.9%
Related for DEBIANCVE:CVE-2013-5607