Wind River Support Network

HomeDefectsLIN1019-222
Not to be fixed

LIN1019-222 : Security Advisory - nss - CVE-2017-11695

Created: Jan 1, 2019    Updated: Apr 13, 2020
Resolved Date: Apr 13, 2020
Found In Version: 10.19.45.1
Severity: Standard
Applicable for: Wind River Linux LTS 19
Component/s: Userspace

Description

Heap-based buffer overflow in the alloc_segs function in lib/dbm/src/hash.c in Mozilla Network Security Services (NSS) allows context-dependent attackers to have unspecified impact using a crafted cert8.db file.

https://nvd.nist.gov/vuln/detail/CVE-2017-11695
Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube