Lucene search
RedHatRHSA-2020:1461HistoryApr 14, 2020 - 2:33 p.m.
(RHSA-2020:1461) Important: nss-softokn security update
2020-04-1414:33:58
access.redhat.com
73
0.003 Low
EPSS
Percentile
71.1%
The nss-softokn package provides the Network Security Services Softoken Cryptographic Module.
Security Fix(es):
-
nss: Out-of-bounds write when passing an output buffer smaller than the block size to NSC_EncryptUpdate (CVE-2019-11745)
-
ROHNP: Key Extraction Side Channel in Multiple Crypto Libraries (CVE-2018-0495)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 7 | s390 | nss-softokn-freebl | < 3.36.0-6.el7_6 | nss-softokn-freebl-3.36.0-6.el7_6.s390.rpm |
| RedHat | 7 | i686 | nss-softokn-freebl | < 3.36.0-6.el7_6 | nss-softokn-freebl-3.36.0-6.el7_6.i686.rpm |
| RedHat | 7 | x86_64 | nss-softokn | < 3.36.0-6.el7_6 | nss-softokn-3.36.0-6.el7_6.x86_64.rpm |
| RedHat | 7 | s390x | nss-softokn-debuginfo | < 3.36.0-6.el7_6 | nss-softokn-debuginfo-3.36.0-6.el7_6.s390x.rpm |
| RedHat | 7 | i686 | nss-softokn-devel | < 3.36.0-6.el7_6 | nss-softokn-devel-3.36.0-6.el7_6.i686.rpm |
| RedHat | 7 | aarch64 | nss-softokn-freebl-devel | < 3.36.0-6.el7_6 | nss-softokn-freebl-devel-3.36.0-6.el7_6.aarch64.rpm |
| RedHat | 7 | ppc64 | nss-softokn-devel | < 3.36.0-6.el7_6 | nss-softokn-devel-3.36.0-6.el7_6.ppc64.rpm |
| RedHat | 7 | s390 | nss-softokn-freebl-devel | < 3.36.0-6.el7_6 | nss-softokn-freebl-devel-3.36.0-6.el7_6.s390.rpm |
| RedHat | 7 | ppc64 | nss-softokn-freebl-devel | < 3.36.0-6.el7_6 | nss-softokn-freebl-devel-3.36.0-6.el7_6.ppc64.rpm |
| RedHat | 7 | s390 | nss-softokn | < 3.36.0-6.el7_6 | nss-softokn-3.36.0-6.el7_6.s390.rpm |
Related
nessus
nessus
RHEL 7 : nss-softokn (RHSA-2020:1345)
2020-04-07 00:00:00
RHEL 7 : nss-softokn (RHSA-2020:1461)
2020-04-14 00:00:00
RHEL 7 : nss-softokn (RHSA-2020:1267)
2020-04-01 00:00:00
redhat
redhat
(RHSA-2020:1345) Important: nss-softokn security update
2020-04-07 08:30:50
(RHSA-2020:1267) Important: nss-softokn security update
2020-04-01 07:33:21
(RHSA-2019:4152) Important: nss-softokn security update
2019-12-10 10:02:18
amazon
amazon
Important: nss, nss-softokn, nss-util, nspr
2020-03-16 21:29:00
Important: nss
2020-01-14 20:03:00
Important: nss-util
2024-02-15 03:52:00
ubuntu
ubuntu
NSS vulnerability
2019-11-27 00:00:00
NSS vulnerability
2019-11-27 00:00:00
Libgcrypt vulnerability
2018-06-19 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-4203-2)
2022-08-26 00:00:00
CentOS Update for nss-softokn CESA-2019:4152 centos6
2019-12-12 00:00:00
Mageia: Security Advisory (MGASA-2019-0374)
2022-01-28 00:00:00
osv
osv
CVE-2019-11745
2020-01-08 20:15:12
nss - security update
2019-11-25 00:00:00
libgcrypt20 - security update
2018-06-29 00:00:00
ubuntucve
ubuntucve
CVE-2019-11745
2019-11-25 00:00:00
CVE-2018-0495
2018-06-13 00:00:00
oraclelinux
oraclelinux
nss security update
2019-12-09 00:00:00
nss-softokn security update
2019-12-11 00:00:00
nss, nss-softokn, nss-util security update
2019-12-11 00:00:00
redhatcve
redhatcve
debiancve
debiancve
CVE-2019-11745
2020-01-08 20:15:12
CVE-2018-0495
2018-06-13 23:29:00
veracode
veracode
Denial Of Service (DoS)
2019-12-10 00:18:20
Side-channel Attack
2019-06-03 00:25:00
alpinelinux
alpinelinux
CVE-2019-11745
2020-01-08 20:15:12
CVE-2018-0495
2018-06-13 23:29:00
nvd
nvd
CVE-2019-11745
2020-01-08 20:15:12
CVE-2018-0495
2018-06-13 23:29:00
ibm
ibm
prion
prion
Design/Logic Flaw
2020-01-08 20:15:00
Memory corruption
2018-06-13 23:29:00
debian
debian
[SECURITY] [DLA 2008-1] nss security update
2019-11-25 23:15:08
[SECURITY] [DSA 4231-1] libgcrypt20 security update
2018-06-17 18:53:17
[SECURITY] [DSA 4231-1] libgcrypt20 security update
2018-06-17 18:53:17
mageia
mageia
Updated nss packages fix security vulnerability
2019-12-08 21:12:18
Updated libgcrypt packages fix security vulnerability
2018-07-01 20:17:14
Updated libcrypt packages fix a security vulnerability
2018-07-02 01:17:47
centos
centos
nss security update
2019-12-11 17:44:29
nss security update
2019-12-24 15:55:26
nspr, nss security update
2019-08-30 03:43:23
cvelist
cvelist
CVE-2019-11745
2020-01-08 19:22:00
CVE-2018-0495
2018-06-13 23:00:00
cve
cve
CVE-2019-11745
2020-01-08 20:15:12
CVE-2018-0495
2018-06-13 23:29:00
cloudfoundry
cloudfoundry
USN-3689-1: Libgcrypt vulnerability | Cloud Foundry
2018-07-10 00:00:00
USN-3692-1: OpenSSL vulnerabilities | Cloud Foundry
2018-07-10 00:00:00
fedora
fedora
[SECURITY] Fedora 27 Update: libgcrypt-1.8.3-1.fc27
2018-06-17 19:45:43
[SECURITY] Fedora 28 Update: libgcrypt-1.8.3-1.fc28
2018-06-18 16:20:42
[SECURITY] Fedora 27 Update: botan2-2.7.0-1.fc27
2018-07-11 19:32:47
slackware
slackware
[slackware-security] libgcrypt
2018-06-13 22:09:13
freebsd
freebsd
libgcrypt -- side-channel attack vulnerability
2018-06-13 00:00:00
archlinux
archlinux
[ASA-201806-10] libgcrypt: private key recovery
2018-06-16 00:00:00
f5
f5
K20001553 : Libgcrypt vulnerability CVE-2018-0495
2018-09-28 00:00:00
suse
suse
Security update for libgcrypt (moderate)
2018-07-28 16:00:35
Security update for libgcrypt (moderate)
2018-08-03 21:07:44
Security update for mozilla-nspr and mozilla-nss (moderate)
2018-12-28 21:12:25
photon
photon
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2018-1.0-0182
2018-09-05 00:00:00
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2018-2.0-0091
2018-09-06 00:00:00
Critical Photon OS Security Update - PHSA-2018-0182
2018-09-05 00:00:00