commit | ab61031a34df8875cec0d9c605f7f69840c11cfe | [log] [tgz] |
---|---|---|
author | Gustavo Zacarias <gustavo@zacarias.com.ar> | Wed Mar 30 16:51:07 2016 -0300 |
committer | Thomas Petazzoni <thomas.petazzoni@free-electrons.com> | Thu Mar 31 03:43:58 2016 +0200 |
tree | 1655a56b89167ee18cbd79dd5e46205c582ae780 | |
parent | 3025e84409f16407e50fd5f41e7cfd6c22066cee [diff] |
nss: security bump to version 3.23 Fixes: CVE-2016-1950 - Fixed a heap-based buffer overflow related to the parsing of certain ASN.1 structures. An attacker could create a specially-crafted certificate which, when parsed by NSS, would cause a crash or execution of arbitrary code with the permissions of the user. Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>