Synopsis: Moderate: nss and nss-util security update
Advisory ID: SLSA-2016:2779-1
Issue Date: 2016-11-16
CVE Numbers: CVE-2016-2834
CVE-2016-5285
CVE-2016-8635
—
The nss-util packages provide utilities for use with the Network Security
Services (NSS) libraries.
The following packages have been upgraded to a newer upstream version: nss
(3.12.3), nss-util (3.12.3).
Security Fix(es):
* Multiple buffer handling flaws were found in the way NSS handled
cryptographic data from the network. A remote attacker could use these
flaws to crash an application using NSS or, possibly, execute arbitrary
code with the permission of the user running the application.
(CVE-2016-2834)
* A NULL pointer dereference flaw was found in the way NSS handled invalid
Diffie-Hellman keys. A remote client could use this flaw to crash a
TLS/SSL server using NSS. (CVE-2016-5285)
* It was found that Diffie Hellman Client key exchange handling in NSS was
vulnerable to small subgroup confinement attack. An attacker could use
this flaw to recover private keys by confining the client DH key to small
subgroup of the desired group. (CVE-2016-8635)
—
SL5
x86_64
nss-3.21.3-2.el5_11.i386.rpm
nss-3.21.3-2.el5_11.x86_64.rpm
nss-debuginfo-3.21.3-2.el5_11.i386.rpm
nss-debuginfo-3.21.3-2.el5_11.x86_64.rpm
nss-tools-3.21.3-2.el5_11.x86_64.rpm
nss-devel-3.21.3-2.el5_11.i386.rpm
nss-devel-3.21.3-2.el5_11.x86_64.rpm
nss-pkcs11-devel-3.21.3-2.el5_11.i386.rpm
nss-pkcs11-devel-3.21.3-2.el5_11.x86_64.rpm
i386
nss-3.21.3-2.el5_11.i386.rpm
nss-debuginfo-3.21.3-2.el5_11.i386.rpm
nss-tools-3.21.3-2.el5_11.i386.rpm
nss-devel-3.21.3-2.el5_11.i386.rpm
nss-pkcs11-devel-3.21.3-2.el5_11.i386.rpm
SL6
x86_64
nss-3.21.3-2.el6_8.i686.rpm
nss-3.21.3-2.el6_8.x86_64.rpm
nss-debuginfo-3.21.3-2.el6_8.i686.rpm
nss-debuginfo-3.21.3-2.el6_8.x86_64.rpm
nss-sysinit-3.21.3-2.el6_8.x86_64.rpm
nss-tools-3.21.3-2.el6_8.x86_64.rpm
nss-util-3.21.3-1.el6_8.i686.rpm
nss-util-3.21.3-1.el6_8.x86_64.rpm
nss-util-debuginfo-3.21.3-1.el6_8.i686.rpm
nss-util-debuginfo-3.21.3-1.el6_8.x86_64.rpm
nss-devel-3.21.3-2.el6_8.i686.rpm
nss-devel-3.21.3-2.el6_8.x86_64.rpm
nss-pkcs11-devel-3.21.3-2.el6_8.i686.rpm
nss-pkcs11-devel-3.21.3-2.el6_8.x86_64.rpm
nss-util-devel-3.21.3-1.el6_8.i686.rpm
nss-util-devel-3.21.3-1.el6_8.x86_64.rpm
i386
nss-3.21.3-2.el6_8.i686.rpm
nss-debuginfo-3.21.3-2.el6_8.i686.rpm
nss-sysinit-3.21.3-2.el6_8.i686.rpm
nss-tools-3.21.3-2.el6_8.i686.rpm
nss-util-3.21.3-1.el6_8.i686.rpm
nss-util-debuginfo-3.21.3-1.el6_8.i686.rpm
nss-devel-3.21.3-2.el6_8.i686.rpm
nss-pkcs11-devel-3.21.3-2.el6_8.i686.rpm
nss-util-devel-3.21.3-1.el6_8.i686.rpm
SL7
x86_64
nss-3.21.3-2.el7_3.i686.rpm
nss-3.21.3-2.el7_3.x86_64.rpm
nss-debuginfo-3.21.3-2.el7_3.i686.rpm
nss-debuginfo-3.21.3-2.el7_3.x86_64.rpm
nss-sysinit-3.21.3-2.el7_3.x86_64.rpm
nss-tools-3.21.3-2.el7_3.x86_64.rpm
nss-util-3.21.3-1.1.el7_3.i686.rpm
nss-util-3.21.3-1.1.el7_3.x86_64.rpm
nss-util-debuginfo-3.21.3-1.1.el7_3.i686.rpm
nss-util-debuginfo-3.21.3-1.1.el7_3.x86_64.rpm
nss-devel-3.21.3-2.el7_3.i686.rpm
nss-devel-3.21.3-2.el7_3.x86_64.rpm
nss-pkcs11-devel-3.21.3-2.el7_3.i686.rpm
nss-pkcs11-devel-3.21.3-2.el7_3.x86_64.rpm
nss-util-devel-3.21.3-1.1.el7_3.i686.rpm
nss-util-devel-3.21.3-1.1.el7_3.x86_64.rpm
– Scientific Linux Development Team
