drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Denial of Service in NSS (Aktualisierung)
| Name: |
Denial of Service in NSS (Aktualisierung) |
|
| ID: |
USN-4203-2 |
|
| Distribution: |
Ubuntu |
|
| Plattformen: |
Ubuntu 12.04 ESM, Ubuntu 14.04 ESM |
|
| Datum: |
Mi, 27. November 2019, 23:04 |
|
| Referenzen: |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11745 |
|
| Applikationen: |
NSS |
|
| Update von: |
Denial of Service in NSS |
|
Originalnachricht |
--===============3202848665819906553==
Content-Type: multipart/signed; micalg=pgp-sha1;
protocol="application/pgp-signature";
boundary="LQksG6bCIzRHxTLp"
Content-Disposition: inline
--LQksG6bCIzRHxTLp
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
==========================================================================
Ubuntu Security Notice USN-4203-2
November 27, 2019
nss vulnerability
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 14.04 ESM
- Ubuntu 12.04 ESM
Summary:
NSS could be made to crash or run programs if it received specially crafted
input.
Software Description:
- nss: Network Security Service library
Details:
USN-4203-1 fixed a vulnerability in NSS. This update provides
the corresponding update for Ubuntu 12.04 ESM and Ubuntu 14.04 ESM.
Original advisory details:
It was discovered that NSS incorrectly handled certain memory operations. A
remote attacker could use this issue to cause NSS to crash, resulting in a
denial of service, or possibly execute arbitrary code.
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 14.04 ESM:
libnss3 2:3.28.4-0ubuntu0.14.04.5+esm2
Ubuntu 12.04 ESM:
libnss3 2:3.28.4-0ubuntu0.12.04.5
After a standard system update you need to restart any applications that
use NSS, such as Evolution, to make all the necessary changes.
References:
https://usn.ubuntu.com/4203-2
https://usn.ubuntu.com/4203-1
CVE-2019-11745
--LQksG6bCIzRHxTLp
Content-Type: application/pgp-signature; name="signature.asc"
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=xjtW
-----END PGP SIGNATURE-----
--LQksG6bCIzRHxTLp--
--===============3202848665819906553==
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: base64
Content-Disposition: inline
--
ubuntu-security-announce mailing list
ubuntu-security-announce@lists.ubuntu.com
Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce
|
|
|
|
