mod_ns is vulnerable to unintended cipher attack. This vulnerability allows attackers to force the use of ciphers that were not intended to be enabled.
CPE | Name | Operator | Version |
---|---|---|---|
libapache2-mod-nss:stretch | eq | 1.0.14-1+b1 | |
libapache2-mod-nss:stretch | eq | 1.0.14-1+b1 |
lists.fedoraproject.org/pipermail/package-announce/2016-April/183102.html
lists.fedoraproject.org/pipermail/package-announce/2016-April/183129.html
lists.fedoraproject.org/pipermail/package-announce/2016-May/184345.html
rhn.redhat.com/errata/RHSA-2016-2602.html
bugzilla.redhat.com/show_bug.cgi?id=1319052
security-tracker.debian.org/tracker/CVE-2016-3099