nss-3.67.0-7.el8.ML.1
エラータID: AXSA:2021-2840:09
リリース日:
2021/12/22 Wednesday - 05:40
題名:
nss-3.67.0-7.el8.ML.1
影響のあるチャネル:
Asianux Server 8 for x86_64
Severity:
High
Description:
以下項目について対処しました。
[Security Fix]
- NSS には証明書の検証に問題があり、SSL/TLS サーバーを装った攻撃者が
NSS を使ってコンパイルされたクライアントアプリケーションが SSL/TLS 接
続を開始しようとする際、または NSS を使ってコンパイルされたクライアン
ト認証を処理するサーバーアプリケーションが、クライアントを通じて悪意の
ある証明書を受信した際に、リモートコードが実行されてしまう脆弱性があり
ます。(CVE-2021-43527)
解決策:
パッケージをアップデートしてください。
CVE:
CVE-2021-43527
NSS (Network Security Services) versions prior to 3.73 or 3.68.1 ESR are vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS signatures. Applications using NSS for handling signatures encoded within CMS, S/MIME, PKCS \#7, or PKCS \#12 are likely to be impacted. Applications using NSS for certificate validation or other TLS, X.509, OCSP or CRL functionality may be impacted, depending on how they configure NSS. *Note: This vulnerability does NOT impact Mozilla Firefox.* However, email clients and PDF viewers that use NSS for signature verification, such as Thunderbird, LibreOffice, Evolution and Evince are believed to be impacted. This vulnerability affects NSS < 3.73 and NSS < 3.68.1.
NSS (Network Security Services) versions prior to 3.73 or 3.68.1 ESR are vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS signatures. Applications using NSS for handling signatures encoded within CMS, S/MIME, PKCS \#7, or PKCS \#12 are likely to be impacted. Applications using NSS for certificate validation or other TLS, X.509, OCSP or CRL functionality may be impacted, depending on how they configure NSS. *Note: This vulnerability does NOT impact Mozilla Firefox.* However, email clients and PDF viewers that use NSS for signature verification, such as Thunderbird, LibreOffice, Evolution and Evince are believed to be impacted. This vulnerability affects NSS < 3.73 and NSS < 3.68.1.
追加情報:
N/A
ダウンロード:
SRPMS
- nss-3.67.0-7.el8.ML.1.src.rpm
MD5: f125096d4a89330369cadb072b817e65
SHA-256: d56eeb624e8720b596d57cda05a32048504203524e2afe7f74282b67ec3e6c3b
Size: 78.65 MB
Asianux Server 8 for x86_64
- nss-3.67.0-7.el8.ML.1.x86_64.rpm
MD5: 81418e616ea327917e7d5e38487ca620
SHA-256: 3e71ecde982b6debe2ebc7988a655c89dac513f7d10cbead8e4dd8a4f4fd913f
Size: 739.89 kB - nss-devel-3.67.0-7.el8.ML.1.x86_64.rpm
MD5: 4a1acf949274dd14e7880388a6ce9178
SHA-256: da7f1879926e6fdcf4e22cacb80e18ce980d1d837b5cc373a6695454d73004ba
Size: 273.39 kB - nss-softokn-3.67.0-7.el8.ML.1.x86_64.rpm
MD5: 5ebfcf496fad3159c348c88ebe545e67
SHA-256: 9bc5e182537ea6b1fc84f0abe350f59e567f400e63cc65784b8aa7033c090088
Size: 485.68 kB - nss-softokn-devel-3.67.0-7.el8.ML.1.x86_64.rpm
MD5: 6a124526a8f7b371cfb955a4cd384ee2
SHA-256: bbec5d4effaf97ff0c7993511a16e2711bddee3ac3ddb25e1390dd84c21458dd
Size: 67.36 kB - nss-softokn-freebl-3.67.0-7.el8.ML.1.x86_64.rpm
MD5: e774532da9efdc6dc0eba5932cd3ec13
SHA-256: 58298f02115a3121f4e535e7a5f3db77ff09c68f4c91af5164ea60c34e09397f
Size: 394.37 kB - nss-softokn-freebl-devel-3.67.0-7.el8.ML.1.x86_64.rpm
MD5: 8fd3bb4a210568989f76ec4cc7f81c78
SHA-256: 787da31e82882990ed026a0a6797bbaf038c4e488999727a4cc1b0839df24808
Size: 111.78 kB - nss-sysinit-3.67.0-7.el8.ML.1.x86_64.rpm
MD5: 98b6050a2a97ce059a89bfb02057cffc
SHA-256: 3701ce8da34961ac1bfaeb238bc44982be8c2083b17014d37343cba79e2ea34e
Size: 72.21 kB - nss-tools-3.67.0-7.el8.ML.1.x86_64.rpm
MD5: 430b584299d047a5cc508e68bb8bb3d2
SHA-256: 574b1e89c44df0e7e2e33710256220c132a55dfadcbc67114562aa45bbc764fa
Size: 574.87 kB - nss-util-3.67.0-7.el8.ML.1.x86_64.rpm
MD5: 41673805d67422974d2cdbd6d911a333
SHA-256: 303ee263bff05503521ee81df8038268c9717cd24dc4525dfce917b7ba1366d5
Size: 136.14 kB - nss-util-devel-3.67.0-7.el8.ML.1.x86_64.rpm
MD5: 87308abbdae8cb2ca311303f2bf2be01
SHA-256: 513e615ffd6ecfc65e3f09e93bc7ca05f33a908b6be5c29d5cca9f9de993bc21
Size: 131.16 kB - nss-3.67.0-7.el8.ML.1.i686.rpm
MD5: 22472135c9d73f67e546d2401295473b
SHA-256: 1a54c24a97b46d1ddd3bf66fe9907ff0dd55ca4690b7f087357b608e75b7e8d5
Size: 816.92 kB - nss-devel-3.67.0-7.el8.ML.1.i686.rpm
MD5: b24505879d94cd0c29f69a8004e94d45
SHA-256: 180b174ed48b8b9fbdd7294aada8fe86a3a338ab2606238be55264976effbcaa
Size: 276.98 kB - nss-softokn-3.67.0-7.el8.ML.1.i686.rpm
MD5: 894c5aa7f0862e37b45c568c41e791f8
SHA-256: cbff92b7731ecd2a02be47844eaaf2a26a69d5281ae35147bd84dbbcfdd20bee
Size: 521.23 kB - nss-softokn-devel-3.67.0-7.el8.ML.1.i686.rpm
MD5: 9c5f16d9c6d6ab0da6efd3108c68cd53
SHA-256: fbf299abf2b26d240e36abf70b859f25ded622ac5a9f46e3f7b0195beb7b7e75
Size: 67.39 kB - nss-softokn-freebl-3.67.0-7.el8.ML.1.i686.rpm
MD5: 6dfa4a41f80a4f99bc31d846e8b5a6e5
SHA-256: a21978968d7f811c4b03e1d04529b48ae353393aa694923d87cf20fdf988e3a5
Size: 382.71 kB - nss-softokn-freebl-devel-3.67.0-7.el8.ML.1.i686.rpm
MD5: 84b91d5c357f982c3327dee18b4c1c14
SHA-256: df2044f91da13633ca6170ee2098374ad05ef8fb76a06076aade0ccfbf0702f1
Size: 111.07 kB - nss-util-3.67.0-7.el8.ML.1.i686.rpm
MD5: a51414a8b420ed1c52df0ed5b8123595
SHA-256: eb73a8f5b59f152e0646bcbc1478ad4dc98633fbea78beed9cd6416a8e36c5ad
Size: 138.77 kB - nss-util-devel-3.67.0-7.el8.ML.1.i686.rpm
MD5: 7068090d5aa0d1d825a6c617e4473f8f
SHA-256: cbfae6b61484b04527964c9ca955493072171edcc98fae608a4930e00f2ffc9a
Size: 131.20 kB
English