The CERT_DecodeCertPackage function in Mozilla Network Security Services (NSS), as used in Mozilla Firefox before 20.0, Firefox ESR 17.x before 17.0.5, Thunderbird before 17.0.5, Thunderbird ESR 17.x before 17.0.5, SeaMonkey before 2.17, and other products, allows remote attackers to cause a denial of service (out-of-bounds read and memory corruption) via a crafted certificate.
Publish Date : 2013-04-03 Last Update Date : 2017-09-19
Title |
Definition Id |
Class |
Family |
DEPRECATED: ELSA-2013-1135 -- nss and nspr security, bug fix, and enhancement update (moderate) |
oval:org.mitre.oval:def:27513 |
|
unix |
DEPRECATED: ELSA-2013-1144 -- nss, nss-util, nss-softokn, and nspr security update (moderate) |
oval:org.mitre.oval:def:27269 |
|
unix |
ELSA-2013:1135: nss and nspr security, bug fix, and enhancement update (Moderate) |
oval:org.mitre.oval:def:22788 |
|
unix |
ELSA-2013:1144: nss, nss-util, nss-softokn, and nspr security update (Moderate) |
oval:org.mitre.oval:def:24119 |
|
unix |
RHSA-2013:1135: nss and nspr security, bug fix, and enhancement update (Moderate) |
oval:org.mitre.oval:def:21084 |
|
unix |
RHSA-2013:1135: nss and nspr security, bug fix, and enhancement update (Moderate) |
oval:com.redhat.rhsa:def:20131135 |
|
unix |
RHSA-2013:1144: nss, nss-util, nss-softokn, and nspr security update (Moderate) |
oval:org.mitre.oval:def:21177 |
|
unix |
RHSA-2013:1144: nss, nss-util, nss-softokn, and nspr security update (Moderate) |
oval:com.redhat.rhsa:def:20131144 |
|
unix |
SUSE-SU-2013:0645-1 -- Security update for Mozilla Firefox |
oval:org.mitre.oval:def:26035 |
|
unix |
SUSE-SU-2013:0842-1 -- Security update for Mozilla Firefox |
oval:org.mitre.oval:def:25842 |
|
unix |
SUSE-SU-2013:0843-1 -- Security update for Mozilla Firefox |
oval:org.mitre.oval:def:25607 |
|
unix |
SUSE-SU-2013:0850-1 -- Security update for Mozilla Firefox |
oval:org.mitre.oval:def:25488 |
|
unix |
SUSE-SU-2013:1152-1 -- Security update for Mozilla Firefox |
oval:org.mitre.oval:def:25919 |
|
unix |
The CERT_DecodeCertPackage function in Mozilla Network Security Services (NSS), as used in Mozilla Firefox before 20.0, ... |
oval:org.mitre.oval:def:17150 |
|
windows |
USN-1786-2 -- unity-firefox-extension update |
oval:org.mitre.oval:def:18278 |
|
unix |
|
OVAL (Open Vulnerability and Assessment Language) definitions define exactly what should be done to verify
a vulnerability or a missing patch. Check out the OVAL definitions
if you want to learn what you should do to verify a vulnerability.