oval:org.mitre.oval:def:27269
| Definition Id: oval:org.mitre.oval:def:27269 | |||
| Oval ID: | oval:org.mitre.oval:def:27269 | ||
| Title: | DEPRECATED: ELSA-2013-1144 -- nss, nss-util, nss-softokn, and nspr security update (moderate) | ||
| Description: | It was discovered that NSS leaked timing information when decrypting TLS/SSL and DTLS protocol encrypted records when CBC-mode cipher suites were used. A remote attacker could possibly use this flaw to retrieve plain text from the encrypted packets by using a TLS/SSL or DTLS server as a padding oracle. (CVE-2013-1620) An out-of-bounds memory read flaw was found in the way NSS decoded certain certificates. If an application using NSS decoded a malformed certificate, it could cause the application to crash. (CVE-2013-0791) | ||
| Family: | unix | Class: | patch |
| Reference(s): | ELSA-2013-1144 CVE-2013-0791 CVE-2013-1620 | Version: | 4 |
| Platform(s): | Oracle Linux 6 | Product(s): | nspr nss nss-softokn nss-util |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:16594 | |||
| Oval ID: | oval:org.mitre.oval:def:16594 | ||
| Title: | Oracle Linux 6.x | ||
| Description: | The operating system installed on the system is Oracle Linux 6.x | ||
| Family: | unix | Class: | inventory |
| Reference(s): | cpe:/o:oracle:linux:6 | Version: | 5 |
| Platform(s): | Oracle Linux 6 | Product(s): | |
| Definition Synopsis: | |||
| Referenced By: | |||
| oval:org.mitre.oval:def:27269 | |||
