RHSA-2021:0876MediumCVSS 8.1

Red Hat Security Advisory: nss and nss-softokn security update

Published
March 16, 2021
Last Modified
June 27, 2026

🔗 CVE IDs covered (4)

📋 Description

CVE-2019-11756 — nss: Use-after-free in sftk_FreeSession due to improper refcounting CVE-2019-17006 — nss: Check length of inputs for cryptographic primitives CVE-2019-17007 — nss: Handling of Netscape Certificate Sequences in CERT_DecodeCertPackage() may crash with a NULL deref leading to DoS CVE-2020-12403 — nss: CHACHA20-POLY1305 decryption with undersized tag leads to out-of-bounds read

🔗 References (7)