 
| Subject: | |
| From: | |
| Reply To: | |
| Date: | Tue, 22 Jul 2014 23:37:04 +0000 |
| Content-Type: | text/plain |
| Parts/Attachments: |
|
|
Synopsis: Critical: nss and nspr security update
Advisory ID: SLSA-2014:0916-1
Issue Date: 2014-07-22
CVE Numbers: CVE-2014-1544
--
A race condition was found in the way NSS verified certain certificates. A
remote attacker could use this flaw to crash an application using NSS or,
possibly, execute arbitrary code with the privileges of the user running
that application. (CVE-2014-1544)
After installing this update, applications using NSS or NSPR must be
restarted for this update to take effect.
--
SL5
x86_64
nspr-4.10.6-1.el5_10.i386.rpm
nspr-4.10.6-1.el5_10.x86_64.rpm
nspr-debuginfo-4.10.6-1.el5_10.i386.rpm
nspr-debuginfo-4.10.6-1.el5_10.x86_64.rpm
nss-3.15.3-7.el5_10.i386.rpm
nss-3.15.3-7.el5_10.x86_64.rpm
nss-debuginfo-3.15.3-7.el5_10.i386.rpm
nss-debuginfo-3.15.3-7.el5_10.x86_64.rpm
nss-tools-3.15.3-7.el5_10.x86_64.rpm
nspr-devel-4.10.6-1.el5_10.i386.rpm
nspr-devel-4.10.6-1.el5_10.x86_64.rpm
nss-devel-3.15.3-7.el5_10.i386.rpm
nss-devel-3.15.3-7.el5_10.x86_64.rpm
nss-pkcs11-devel-3.15.3-7.el5_10.i386.rpm
nss-pkcs11-devel-3.15.3-7.el5_10.x86_64.rpm
i386
nspr-4.10.6-1.el5_10.i386.rpm
nspr-debuginfo-4.10.6-1.el5_10.i386.rpm
nss-3.15.3-7.el5_10.i386.rpm
nss-debuginfo-3.15.3-7.el5_10.i386.rpm
nss-tools-3.15.3-7.el5_10.i386.rpm
nspr-devel-4.10.6-1.el5_10.i386.rpm
nss-devel-3.15.3-7.el5_10.i386.rpm
nss-pkcs11-devel-3.15.3-7.el5_10.i386.rpm
- Scientific Linux Development Team
|
|
|
