vulnerability

Huawei EulerOS: CVE-2019-17006: nss security update

Severity
10
CVSS
(AV:N/AC:L/Au:N/C:C/I:C/A:C)
Published
Oct 22, 2020
Added
Jan 5, 2021
Modified
Jan 5, 2021

Description

In Network Security Services (NSS) before 3.46, several cryptographic primitives had missing length checks. In cases where the application calling the library did not perform a sanity check on the inputs it could result in a crash due to a buffer overflow.

Solution(s)

huawei-euleros-2_0_sp9-upgrade-nsshuawei-euleros-2_0_sp9-upgrade-nss-softoknhuawei-euleros-2_0_sp9-upgrade-nss-util
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.