Network Security Services (NSS) is a set of libraries designed to support
the cross-platform development of security-enabled client and server
applications.
A flaw was found in the way NSS handled invalid handshake packets. A remote
attacker could use this flaw to cause a TLS/SSL client using NSS to crash
or, possibly, execute arbitrary code with the privileges of the user
running the application. (CVE-2013-5605)
All NSS users should upgrade to these updated packages, which contain a
backported patch to correct this issue. After installing this update,
applications using NSS must be restarted for the changes to take effect.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 6 | s390x | nss-devel | < 3.13.6-3.el6_3 | nss-devel-3.13.6-3.el6_3.s390x.rpm |
RedHat | 6 | i686 | nss-pkcs11-devel | < 3.13.1-9.el6_2 | nss-pkcs11-devel-3.13.1-9.el6_2.i686.rpm |
RedHat | 6 | src | nss | < 3.14.3-5.el6_4 | nss-3.14.3-5.el6_4.src.rpm |
RedHat | 6 | ppc64 | nss-sysinit | < 3.14.3-5.el6_4 | nss-sysinit-3.14.3-5.el6_4.ppc64.rpm |
RedHat | 6 | ppc64 | nss-pkcs11-devel | < 3.13.6-3.el6_3 | nss-pkcs11-devel-3.13.6-3.el6_3.ppc64.rpm |
RedHat | 6 | s390x | nss-tools | < 3.13.6-3.el6_3 | nss-tools-3.13.6-3.el6_3.s390x.rpm |
RedHat | 6 | i686 | nss-pkcs11-devel | < 3.13.6-3.el6_3 | nss-pkcs11-devel-3.13.6-3.el6_3.i686.rpm |
RedHat | 6 | x86_64 | nss | < 3.14.3-5.el6_4 | nss-3.14.3-5.el6_4.x86_64.rpm |
RedHat | 6 | s390x | nss | < 3.14.3-5.el6_4 | nss-3.14.3-5.el6_4.s390x.rpm |
RedHat | 6 | i686 | nss-tools | < 3.14.3-5.el6_4 | nss-tools-3.14.3-5.el6_4.i686.rpm |