Test Kennung:	1.3.6.1.4.1.25623.1.0.882779
Kategorie:	CentOS Local Security Checks
Titel:	CentOS Update for nss CESA-2017:2832 centos7
Zusammenfassung:	Check the version of nss
Beschreibung:	Summary: Check the version of nss Vulnerability Insight: Network Security Services (NSS) is a set of libraries designed to support the cross-platform development of security-enabled client and server applications. Security Fix(es): * A use-after-free flaw was found in the TLS 1.2 implementation in the NSS library when client authentication was used. A malicious client could use this flaw to cause an application compiled against NSS to crash or, potentially, execute arbitrary code with the permission of the user running the application. (CVE-2017-7805) Red Hat would like to thank the Mozilla project for reporting this issue. Upstream acknowledges Martin Thomson as the original reporter. Affected Software/OS: nss on CentOS 7 Solution: Please Install the Updated Packages. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2017-7805 BugTraq ID: 101059 http://www.securityfocus.com/bid/101059 Debian Security Information: DSA-3987 (Google Search) https://www.debian.org/security/2017/dsa-3987 Debian Security Information: DSA-3998 (Google Search) https://www.debian.org/security/2017/dsa-3998 Debian Security Information: DSA-4014 (Google Search) https://www.debian.org/security/2017/dsa-4014 https://security.gentoo.org/glsa/201803-14 https://lists.debian.org/debian-lts-announce/2017/11/msg00000.html RedHat Security Advisories: RHSA-2017:2832 https://access.redhat.com/errata/RHSA-2017:2832 http://www.securitytracker.com/id/1039465
Copyright	Copyright (C) 2017 Greenbone AG

Dies ist nur einer von 146377 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.