vulnerability
CentOS Linux: CVE-2020-12399: Moderate: nss and nspr security, bug fix, and enhancement update (CESA-2020:3280)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 1 | (AV:L/AC:H/Au:N/C:P/I:N/A:N) | Jul 9, 2020 | Nov 11, 2021 | May 25, 2023 |
Severity
1
CVSS
(AV:L/AC:H/Au:N/C:P/I:N/A:N)
Published
Jul 9, 2020
Added
Nov 11, 2021
Modified
May 25, 2023
Description
NSS has shown timing differences when performing DSA signatures, which was exploitable and could eventually leak private keys. This vulnerability affects Thunderbird
Solution(s)
centos-upgrade-nsprcentos-upgrade-nspr-debuginfocentos-upgrade-nspr-debugsourcecentos-upgrade-nspr-develcentos-upgrade-nsscentos-upgrade-nss-debuginfocentos-upgrade-nss-debugsourcecentos-upgrade-nss-develcentos-upgrade-nss-softokncentos-upgrade-nss-softokn-debuginfocentos-upgrade-nss-softokn-develcentos-upgrade-nss-softokn-freeblcentos-upgrade-nss-softokn-freebl-debuginfocentos-upgrade-nss-softokn-freebl-develcentos-upgrade-nss-sysinitcentos-upgrade-nss-sysinit-debuginfocentos-upgrade-nss-toolscentos-upgrade-nss-tools-debuginfocentos-upgrade-nss-utilcentos-upgrade-nss-util-debuginfocentos-upgrade-nss-util-devel
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.