RedHatRHSA-2024:0791(RHSA-2024:0791) Moderate: nss security update
4.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
6.9 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
20.6%
Network Security Services (NSS) is a set of libraries designed to support the cross-platform development of security-enabled client and server applications.
Security Fix(es):
- nss: vulnerable to Minerva side-channel information leak (CVE-2023-6135)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 9 | x86_64 | nss-devel | < 3.90.0-6.el9_2 | nss-devel-3.90.0-6.el9_2.x86_64.rpm |
| RedHat | 9 | ppc64le | nss-softokn-devel | < 3.90.0-6.el9_2 | nss-softokn-devel-3.90.0-6.el9_2.ppc64le.rpm |
| RedHat | 9 | x86_64 | nss-debuginfo | < 3.90.0-6.el9_2 | nss-debuginfo-3.90.0-6.el9_2.x86_64.rpm |
| RedHat | 9 | s390x | nss | < 3.90.0-6.el9_2 | nss-3.90.0-6.el9_2.s390x.rpm |
| RedHat | 9 | i686 | nspr-devel | < 4.35.0-6.el9_2 | nspr-devel-4.35.0-6.el9_2.i686.rpm |
| RedHat | 9 | i686 | nss-softokn-devel | < 3.90.0-6.el9_2 | nss-softokn-devel-3.90.0-6.el9_2.i686.rpm |
| RedHat | 9 | ppc64le | nspr-devel | < 4.35.0-6.el9_2 | nspr-devel-4.35.0-6.el9_2.ppc64le.rpm |
| RedHat | 9 | aarch64 | nss-softokn | < 3.90.0-6.el9_2 | nss-softokn-3.90.0-6.el9_2.aarch64.rpm |
| RedHat | 9 | s390x | nspr-debuginfo | < 4.35.0-6.el9_2 | nspr-debuginfo-4.35.0-6.el9_2.s390x.rpm |
| RedHat | 9 | x86_64 | nss-util-devel | < 3.90.0-6.el9_2 | nss-util-devel-3.90.0-6.el9_2.x86_64.rpm |
Related
4.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
6.9 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
20.6%