RHSA-2020:3280MediumCVSS 8.1

Red Hat Security Advisory: nss and nspr security, bug fix, and enhancement update

Published
August 3, 2020
Last Modified
June 27, 2026

🔗 CVE IDs covered (5)

📋 Description

CVE-2019-11756 — nss: Use-after-free in sftk_FreeSession due to improper refcounting CVE-2019-17006 — nss: Check length of inputs for cryptographic primitives CVE-2019-17023 — nss: TLS 1.3 HelloRetryRequest downgrade request sets client into invalid state CVE-2020-12399 — nss: Timing attack on DSA signature generation CVE-2020-12402 — nss: Side channel vulnerabilities during RSA key generation

🔗 References (15)