RHSA-2014:1246Medium

Red Hat Security Advisory: nss and nspr security, bug fix, and enhancement update

Published
September 16, 2014
Last Modified
June 27, 2026

🔗 CVE IDs covered (5)

📋 Description

CVE-2013-1740 — nss: false start PR_Recv information disclosure security issue CVE-2014-1490 — nss: TOCTOU, potential use-after-free in libssl's session ticket processing (MFSA 2014-12) CVE-2014-1491 — nss: Do not allow p-1 as a public DH value (MFSA 2014-12) CVE-2014-1492 — nss: IDNA hostname matching code does not follow RFC 6125 recommendation (MFSA 2014-45) CVE-2014-1545 — Mozilla: Out of bounds write in NSPR (MFSA 2014-55)

🔗 References (11)