MGASA-2019-0374

See a problem?
Please try reporting it to the source first.
Source
https://advisories.mageia.org/MGASA-2019-0374.html
Import Source
https://advisories.mageia.org/MGASA-2019-0374.json
JSON Data
https://api.osv.dev/v1/vulns/MGASA-2019-0374
Related
Published
2019-12-08T18:12:18Z
Modified
2019-12-08T17:54:57Z
Summary
Updated nss packages fix security vulnerability
Details

Updated nss packages fix security vulnerability:

Out-of-bounds write when passing an output buffer smaller than the block size to NSC_EncryptUpdate (CVE-2019-11745).

Also, rootcerts has been updated to 20191126.00

References
Credits

Affected packages

Mageia:7 / nss

Package

Name
nss
Purl
pkg:rpm/mageia/nss?distro=mageia-7

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.47.1-1.mga7

Ecosystem specific 

{
    "section": "core"
}

Mageia:7 / rootcerts

Package

Name
rootcerts
Purl
pkg:rpm/mageia/rootcerts?distro=mageia-7

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
20191126.00-1.mga7

Ecosystem specific 

{
    "section": "core"
}