The libssh2 packages provide a library that implements the SSH2 protocol.
Security Fix(es): * nss: Out-of-bounds write when passing an output buffer smaller than the block size to NSC_EncryptUpdate (CVE-2019-11745) * nss: Empty or malformed p256-ECDH public keys may trigger a segmentation fault (CVE-2019-11729) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. The nss-util packages provide utilities for use with the Network Security Services (NSS) libraries. The nss-softokn package provides the Network Security Services Softoken Cryptographic Module. Network Security Services (NSS) is a set of libraries designed to support the cross-platform development of security-enabled client and server applications. Upstream acknowledges Martin Thomson as the original reporter. (CVE-2017-7805) Red Hat would like to thank the Mozilla project for reporting this issue.
#Docker syslog ng kibana code
A malicious client could use this flaw to cause an application compiled against NSS to crash or, potentially, execute arbitrary code with the permission of the user running the application. Security Fix(es): * A use-after-free flaw was found in the TLS 1.2 implementation in the NSS library when client authentication was used.
0 kommentar(er)
