Source | Text Version

QSN-4215-1: nss vulnerability

December 9, 2019

Summary

NSS could be made to crash if it received a specially crafted certificate.

Details

It was discovered that NSS incorrectly handled certain certificates. An attacker could possibly use this issue to cause a denial of service.

References

https://usn.ubuntu.com/4215-1

http://people.canonical.com/~ubuntu-security/cve/CVE-2019-17007

Update

A general update will usually fix all issues, but to make sure, you can check your current version with:

$ dpkg -l libnss3

If the current version you have is before 2:3.28.4-0ubuntu0.16.04.9, run the following:

$ sudo apt-get update
$ sudo apt-get install libnss3

Copyright © 2010-2015, OSNEXUS Corporation. All rights reserved.