Advisories ยป MGASA-2017-0160

Updated nss packages fix security vulnerability

Publication date: 08 Jun 2017
Type: security
Affected Mageia releases : 5
CVE: CVE-2017-7502

Description

A null pointer dereference flaw was found in the way NSS handled empty
SSLv2 messages. An attacker could use this flaw to crash a server
application compiled against the NSS library (CVE-2017-7502).
                

References

SRPMS

5/core