CVE-2022-3479

Related Files

Ubuntu Security Notice USN-5892-1

Posted Feb 27, 2023

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 5892-1 - It was discovered that NSS incorrectly handled client authentication without a user certificate in the database. A remote attacker could possibly use this issue to cause a NSS client to crash, resulting in a denial of service. This issue only affected Ubuntu 22.10. Christian Holler discovered that NSS incorrectly handled certain PKCS 12 certificated bundles. A remote attacker could use this issue to cause NSS to crash, leading to a denial of service, or possibly execute arbitrary code.

tags | advisory, remote, denial of service, arbitrary

systems | linux, ubuntu

advisories | CVE-2022-3479, CVE-2023-0767

SHA-256 | 08e1514e5eeec5f74d4365784fc07384f881ccfce7ae98e9d80175769c3a1622

Download | Favorite | View

Gentoo Linux Security Advisory 202212-05

Posted Dec 19, 2022

Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202212-5 - Multiple vulnerabilities have been discovered in NSS, the worst of which could result in arbitrary code execution. Versions less than 3.79.2 are affected.

tags | advisory, arbitrary, vulnerability, code execution

systems | linux, gentoo

advisories | CVE-2021-43527, CVE-2022-1097, CVE-2022-3479

SHA-256 | 10fe54de09cf75cfbd19ff3734222038fd66ca90411aa4d32356162278df5737

Download | Favorite | View