Lucene search
RedHatRHSA-2019:4190HistoryDec 10, 2019 - 3:04 p.m.
(RHSA-2019:4190) Important: nss, nss-softokn, nss-util security update
2019-12-1015:04:47
access.redhat.com
48
0.013 Low
EPSS
Percentile
85.9%
Network Security Services (NSS) is a set of libraries designed to support the cross-platform development of security-enabled client and server applications.
The nss-softokn package provides the Network Security Services Softoken Cryptographic Module.
The nss-util packages provide utilities for use with the Network Security Services (NSS) libraries.
Security Fix(es):
-
nss: Out-of-bounds write when passing an output buffer smaller than the block size to NSC_EncryptUpdate (CVE-2019-11745)
-
nss: Empty or malformed p256-ECDH public keys may trigger a segmentation fault (CVE-2019-11729)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 7 | i686 | nss-devel | < 3.44.0-7.el7_7 | nss-devel-3.44.0-7.el7_7.i686.rpm |
| RedHat | 7 | i686 | nss-softokn-debuginfo | < 3.44.0-8.el7_7 | nss-softokn-debuginfo-3.44.0-8.el7_7.i686.rpm |
| RedHat | 7 | s390 | nss-pkcs11-devel | < 3.44.0-7.el7_7 | nss-pkcs11-devel-3.44.0-7.el7_7.s390.rpm |
| RedHat | 7 | ppc64le | nss-softokn-debuginfo | < 3.44.0-8.el7_7 | nss-softokn-debuginfo-3.44.0-8.el7_7.ppc64le.rpm |
| RedHat | 7 | ppc64le | nss-debuginfo | < 3.44.0-7.el7_7 | nss-debuginfo-3.44.0-7.el7_7.ppc64le.rpm |
| RedHat | 7 | ppc64 | nss | < 3.44.0-7.el7_7 | nss-3.44.0-7.el7_7.ppc64.rpm |
| RedHat | 7 | x86_64 | nss-softokn-freebl | < 3.44.0-8.el7_7 | nss-softokn-freebl-3.44.0-8.el7_7.x86_64.rpm |
| RedHat | 7 | ppc | nss-softokn-freebl-devel | < 3.44.0-8.el7_7 | nss-softokn-freebl-devel-3.44.0-8.el7_7.ppc.rpm |
| RedHat | 7 | ppc | nss-softokn-freebl | < 3.44.0-8.el7_7 | nss-softokn-freebl-3.44.0-8.el7_7.ppc.rpm |
| RedHat | 7 | i686 | nss-softokn-freebl | < 3.44.0-8.el7_7 | nss-softokn-freebl-3.44.0-8.el7_7.i686.rpm |
Related
nessus
nessus
Amazon Linux 2 : nss (ALAS-2020-1384)
2020-01-21 00:00:00
Amazon Linux 2 : nss-util (ALAS-2024-2470)
2024-02-19 00:00:00
amazon
amazon
Important: nss-util
2023-02-17 00:11:00
Important: nss
2020-01-14 20:03:00
Important: nss-util
2024-02-15 03:52:00
ibm
ibm
openvas
openvas
CentOS Update for nss-softokn CESA-2019:4190 centos7
2020-01-08 00:00:00
CentOS Update for nss CESA-2019:4190 centos7
2020-01-08 00:00:00
CentOS Update for nss-util CESA-2019:4190 centos7
2020-01-08 00:00:00
centos
centos
nss security update
2019-12-24 15:55:26
nss security update
2019-12-11 17:44:29
oraclelinux
oraclelinux
nss, nss-softokn, nss-util security update
2019-12-11 00:00:00
nss security update
2019-12-09 00:00:00
nss-softokn security update
2019-12-11 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-12-11 00:17:25
Denial Of Service (DoS)
2019-12-10 00:18:20
alpinelinux
alpinelinux
CVE-2019-11729
2019-07-23 14:15:16
CVE-2019-11745
2020-01-08 20:15:12
cvelist
cvelist
CVE-2019-11729
2019-07-23 13:16:24
CVE-2019-11745
2020-01-08 19:22:00
ubuntu
ubuntu
NSS vulnerability
2019-11-27 00:00:00
NSS vulnerability
2019-11-27 00:00:00
NSS vulnerabilities
2019-07-16 00:00:00
osv
osv
CVE-2019-11745
2020-01-08 20:15:12
nss - security update
2019-11-25 00:00:00
nss - security update
2019-12-06 00:00:00
ubuntucve
ubuntucve
CVE-2019-11745
2019-11-25 00:00:00
CVE-2019-11729
2019-07-11 00:00:00
redhat
redhat
(RHSA-2019:4152) Important: nss-softokn security update
2019-12-10 10:02:18
(RHSA-2020:0466) Important: nss-softokn security update
2020-02-11 08:06:00
(RHSA-2019:4114) Important: nss security update
2019-12-09 12:58:06
redhatcve
redhatcve
CVE-2019-11745
2020-04-06 17:07:36
CVE-2019-11729
2022-01-13 06:49:59
debiancve
debiancve
CVE-2019-11745
2020-01-08 20:15:12
CVE-2019-11729
2019-07-23 14:15:16
nvd
nvd
CVE-2019-11745
2020-01-08 20:15:12
CVE-2019-11729
2019-07-23 14:15:16
prion
prion
Design/Logic Flaw
2019-07-23 14:15:00
Design/Logic Flaw
2020-01-08 20:15:00
debian
debian
[SECURITY] [DLA 2008-1] nss security update
2019-11-25 23:15:08
[SECURITY] [DLA 1857-1] nss security update
2019-07-20 17:36:54
[SECURITY] [DSA 4579-1] nss security update
2019-12-06 21:54:22
mageia
mageia
Updated nss packages fix security vulnerability
2019-12-08 21:12:18
cve
cve
CVE-2019-11729
2019-07-23 14:15:16
CVE-2019-11745
2020-01-08 20:15:12
photon
photon
Critical Photon OS Security Update - PHSA-2023-3.0-0579
2023-05-13 00:00:00
Important Photon OS Security Update - PHSA-2023-3.0-0619
2023-07-27 00:00:00
suse
suse
Security update for mozilla-nspr, mozilla-nss (moderate)
2020-01-12 00:00:00
Security update for MozillaFirefox (important)
2020-01-09 00:00:00
Security update for MozillaThunderbird (important)
2020-01-09 00:00:00
gentoo
gentoo
Mozilla Network Security Service: Multiple vulnerabilities
2020-03-16 00:00:00
archlinux
archlinux
[ASA-201912-2] thunderbird: arbitrary code execution
2019-12-06 00:00:00
ics
ics
Siemens RUGGEDCOM ROX II
2021-02-09 12:00:00
kaspersky
kaspersky
KLA11613 Multiple vulnerabilities in Mozilla Thunderbird
2019-11-09 00:00:00
KLA11612 Multiple vulnerabilities in Mozilla Firefox ESR
2019-12-03 00:00:00
KLA11516 Multiple vulnerabilities in Mozilla Firefox ESR
2019-07-09 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package thunderbird version 68.3.1-alt1
2019-12-23 00:00:00
Security fix for the ALT Linux 10 package firefox-esr version 68.3.0-alt1
2019-12-05 00:00:00
Security fix for the ALT Linux 10 package firefox-esr version 60.8.0-alt1
2019-07-09 00:00:00
slackware
slackware
[slackware-security] mozilla-firefox
2019-12-03 19:30:37
[slackware-security] mozilla-firefox
2019-07-11 00:13:28
mozilla
mozilla
Security Vulnerabilities fixed in - Thunderbird 68.3 — Mozilla
2019-12-03 00:00:00
Security Vulnerabilities fixed in - Firefox ESR 68.3 — Mozilla
2019-12-03 00:00:00
Security vulnerabilities fixed in Thunderbird 60.8 — Mozilla
2019-07-09 00:00:00