Search 211766 CVE descriptions
and 97459 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:
Category:Mageia Linux Local Security Checks
Title:Mageia Linux Local Check: mgasa-2016-0114
Summary:Mageia Linux Local Security Checks mgasa-2016-0114
Mageia Linux Local Security Checks mgasa-2016-0114

Vulnerability Insight:
Updated rootcerts and nss packages fix security vulnerability: A heap-based buffer overflow flaw was found in the way NSS parsed certain ASN.1 structures. An attacker could use this flaw to create a specially crafted certificate which, when parsed by NSS, could cause it to crash, or execute arbitrary code, using the permissions of the user running an application compiled against the NSS library (CVE-2016-1950). This issue was supposed to have been fixed in MGASA-2016-0105, but Mozilla did not include the fix until the following nss releases.

Update the affected packages to the latest available version.

CVSS Score:

CVSS Vector:

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2016-1950
BugTraq ID: 84223
Debian Security Information: DSA-3510 (Google Search)
Debian Security Information: DSA-3520 (Google Search)
Debian Security Information: DSA-3688 (Google Search)
RedHat Security Advisories: RHSA-2016:0495
SuSE Security Announcement: SUSE-SU-2016:0727 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:0777 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:0820 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:0909 (Google Search)
SuSE Security Announcement: openSUSE-SU-2016:0731 (Google Search)
SuSE Security Announcement: openSUSE-SU-2016:0733 (Google Search)
SuSE Security Announcement: openSUSE-SU-2016:1557 (Google Search)
CopyrightCopyright (C) 2016 Eero Volotinen

This is only one of 97459 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.

© 1998-2021 E-Soft Inc. All rights reserved.