Search for packages
| purl | pkg:deb/debian/nss@2:3.87.1-1 |
| Tags | Ghost |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-417p-mjbt-aaac
Aliases: CVE-2023-6135 |
Multiple NSS NIST curves were susceptible to a side-channel attack known as "Minerva". This attack could potentially allow an attacker to recover the private key. This vulnerability affects Firefox < 121. |
Affected by 3 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-au4v-jfff-aaap
Aliases: CVE-2024-6609 |
When almost out-of-memory an elliptic curve key which was never allocated could have been freed again. |
Affected by 3 other vulnerabilities. |
|
VCID-frn1-3m59-aaac
Aliases: CVE-2023-4421 |
new tlsfuzzer code can still detect timing issues in RSA operations |
Affected by 3 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-ndhu-5njp-aaaa
Aliases: CVE-2023-5388 |
timing attack against RSA decryption |
Affected by 3 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-v9r1-hscs-aaac
Aliases: CVE-2024-0743 |
An unchecked return value in TLS handshake code could have caused a potentially exploitable crash. |
Affected by 3 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-wt2g-dnbe-aaas
Aliases: CVE-2022-3479 |
A vulnerability found in nss. By this security vulnerability, nss client auth crash without a user certificate in the database and this can lead us to a segmentation fault or crash. |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-zd7v-2uxh-aaae
Aliases: CVE-2024-6602 |
A mismatch between allocator and deallocator could have lead to memory corruption. |
Affected by 3 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2024-12-15T19:13:45.720538+00:00 | Debian Importer | Affected by | VCID-au4v-jfff-aaap | https://security-tracker.debian.org/tracker/data/json | 35.0.0 |
| 2024-12-15T19:13:23.773046+00:00 | Debian Importer | Affected by | VCID-zd7v-2uxh-aaae | https://security-tracker.debian.org/tracker/data/json | 35.0.0 |
| 2024-11-24T06:33:01.045297+00:00 | Debian Importer | Affected by | VCID-v9r1-hscs-aaac | https://security-tracker.debian.org/tracker/data/json | 35.0.0 |
| 2024-11-24T05:55:41.870021+00:00 | Debian Importer | Affected by | VCID-417p-mjbt-aaac | https://security-tracker.debian.org/tracker/data/json | 35.0.0 |
| 2024-11-24T05:39:28.038612+00:00 | Debian Importer | Affected by | VCID-ndhu-5njp-aaaa | https://security-tracker.debian.org/tracker/data/json | 35.0.0 |
| 2024-11-24T03:09:04.314486+00:00 | Debian Importer | Affected by | VCID-frn1-3m59-aaac | None | 35.0.0 |
| 2024-10-11T03:20:19.206173+00:00 | Debian Importer | Affected by | VCID-v9r1-hscs-aaac | https://security-tracker.debian.org/tracker/data/json | 34.0.2 |
| 2024-10-11T02:54:49.736803+00:00 | Debian Importer | Affected by | VCID-417p-mjbt-aaac | https://security-tracker.debian.org/tracker/data/json | 34.0.2 |
| 2024-10-11T02:31:53.699596+00:00 | Debian Importer | Affected by | VCID-ndhu-5njp-aaaa | https://security-tracker.debian.org/tracker/data/json | 34.0.2 |
| 2024-10-11T00:35:25.211541+00:00 | Debian Importer | Affected by | VCID-frn1-3m59-aaac | None | 34.0.2 |
| 2024-09-20T07:32:05.029136+00:00 | Debian Importer | Affected by | VCID-v9r1-hscs-aaac | https://security-tracker.debian.org/tracker/data/json | 34.0.1 |
| 2024-09-20T07:09:32.405661+00:00 | Debian Importer | Affected by | VCID-417p-mjbt-aaac | https://security-tracker.debian.org/tracker/data/json | 34.0.1 |
| 2024-09-20T06:47:39.520286+00:00 | Debian Importer | Affected by | VCID-ndhu-5njp-aaaa | https://security-tracker.debian.org/tracker/data/json | 34.0.1 |
| 2024-09-20T05:14:06.553968+00:00 | Debian Importer | Affected by | VCID-frn1-3m59-aaac | None | 34.0.1 |
| 2024-05-20T15:56:46.107106+00:00 | Debian Importer | Affected by | VCID-v9r1-hscs-aaac | https://security-tracker.debian.org/tracker/data/json | 34.0.0rc4 |
| 2024-05-20T15:42:09.990351+00:00 | Debian Importer | Affected by | VCID-417p-mjbt-aaac | https://security-tracker.debian.org/tracker/data/json | 34.0.0rc4 |
| 2024-05-20T15:24:14.142031+00:00 | Debian Importer | Affected by | VCID-ndhu-5njp-aaaa | https://security-tracker.debian.org/tracker/data/json | 34.0.0rc4 |
| 2024-04-26T05:19:54.227213+00:00 | Debian Importer | Affected by | VCID-frn1-3m59-aaac | None | 34.0.0rc4 |
| 2024-04-25T17:12:39.286330+00:00 | Debian Importer | Affected by | VCID-wt2g-dnbe-aaas | None | 34.0.0rc4 |
| 2024-01-11T20:17:21.031321+00:00 | Debian Importer | Affected by | VCID-wt2g-dnbe-aaas | None | 34.0.0rc2 |
| 2024-01-05T09:51:19.510114+00:00 | Debian Importer | Affected by | VCID-frn1-3m59-aaac | None | 34.0.0rc1 |
| 2024-01-05T03:22:42.318051+00:00 | Debian Importer | Affected by | VCID-wt2g-dnbe-aaas | None | 34.0.0rc1 |