Hanno Böck and Damian Poddebniak discovered that NSS incorrectly handled certain CMS functions. A remote attacker could possibly use this issue to cause NSS to crash, resulting in a denial of service.
{
"availability": "No subscription required",
"binaries": [
{
"binary_version": "2:3.28.4-0ubuntu0.14.04.5",
"binary_name": "libnss3"
},
{
"binary_version": "2:3.28.4-0ubuntu0.14.04.5",
"binary_name": "libnss3-1d"
},
{
"binary_version": "2:3.28.4-0ubuntu0.14.04.5",
"binary_name": "libnss3-dev"
},
{
"binary_version": "2:3.28.4-0ubuntu0.14.04.5",
"binary_name": "libnss3-nssdb"
},
{
"binary_version": "2:3.28.4-0ubuntu0.14.04.5",
"binary_name": "libnss3-tools"
}
]
}
{
"availability": "No subscription required",
"binaries": [
{
"binary_version": "2:3.28.4-0ubuntu0.16.04.5",
"binary_name": "libnss3"
},
{
"binary_version": "2:3.28.4-0ubuntu0.16.04.5",
"binary_name": "libnss3-1d"
},
{
"binary_version": "2:3.28.4-0ubuntu0.16.04.5",
"binary_name": "libnss3-dev"
},
{
"binary_version": "2:3.28.4-0ubuntu0.16.04.5",
"binary_name": "libnss3-nssdb"
},
{
"binary_version": "2:3.28.4-0ubuntu0.16.04.5",
"binary_name": "libnss3-tools"
}
]
}