Wind River Support Network

HomeDefectsLIN1019-225
Not to be fixed

LIN1019-225 : Security Advisory - nss - CVE-2017-11698

Created: Jan 1, 2019    Updated: Apr 13, 2020
Resolved Date: Apr 13, 2020
Found In Version: 10.19.45.1
Severity: Standard
Applicable for: Wind River Linux LTS 19
Component/s: Userspace

Description

Heap-based buffer overflow in the __get_page function in lib/dbm/src/h_page.c in Mozilla Network Security Services (NSS) allows context-dependent attackers to have unspecified impact using a crafted cert8.db file.

https://nvd.nist.gov/vuln/detail/CVE-2017-11698
Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube