Oval Definition:oval:com.redhat.rhsa:def:20214907
Revision Date:2021-12-01Version:637
Title:RHSA-2021:4907: nss security update (Critical)
Description:Network Security Services (NSS) is a set of libraries designed to support the cross-platform development of security-enabled client and server applications.

Security Fix(es):

  • nss: Memory corruption in decodeECorDsaSignature with DSA signatures (and RSA-PSS) (CVE-2021-43527)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2021-43527
    RHSA-2021:4907
    Platform(s):Red Hat Enterprise Linux 6 Extended Lifecycle Support
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 6 is installed
  • AND
  • nss is earlier than 0:3.44.0-12.el6_10
  • AND nss is signed with Red Hat redhatrelease2 key
  • nss-devel is earlier than 0:3.44.0-12.el6_10
  • AND nss-devel is signed with Red Hat redhatrelease2 key
  • nss-pkcs11-devel is earlier than 0:3.44.0-12.el6_10
  • AND nss-pkcs11-devel is signed with Red Hat redhatrelease2 key
  • nss-sysinit is earlier than 0:3.44.0-12.el6_10
  • AND nss-sysinit is signed with Red Hat redhatrelease2 key
  • nss-tools is earlier than 0:3.44.0-12.el6_10
  • AND nss-tools is signed with Red Hat redhatrelease2 key
    • BACK