Zum Inhalt springen.
Sympa Menü

it-securitynotifies - [IT-SecNots] [SECURITY] [DSA 5807-1] nss security update

it-securitynotifies AT lists.piratenpartei.de

Betreff: Sicherheitsankündigungen

Listenarchiv

[IT-SecNots] [SECURITY] [DSA 5807-1] nss security update


Chronologisch Thread  
  • From: Moritz Muehlenhoff <jmm AT debian.org>
  • To: debian-security-announce AT lists.debian.org
  • Subject: [IT-SecNots] [SECURITY] [DSA 5807-1] nss security update
  • Date: Sun, 10 Nov 2024 19:04:21 +0000
  • Authentication-results: lists.piratenpartei.de; dkim=none; spf=none (lists.piratenpartei.de: domain of "bounce-debian-security-announce=it-securitynotifies=lists.piratenpartei.de AT lists.debian.org" has no SPF policy when checking 82.195.75.100) smtp.mailfrom="bounce-debian-security-announce=it-securitynotifies=lists.piratenpartei.de AT lists.debian.org"; dmarc=none
  • List-archive: https://lists.debian.org/msgid-search/ZzEDtfzOvrHTdqeq AT seger.debian.org
  • List-id: <debian-security-announce.lists.debian.org>
  • List-url: <http://lists.debian.org/debian-security-announce/>
  • Old-dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=debian.org; s=smtpauto.seger; h=Content-Type:MIME-Version:Message-ID:Subject:To:From:Date :Reply-To:Cc:Content-Transfer-Encoding:Content-ID:Content-Description: In-Reply-To:References; bh=uGzu6VRtHJG/5NQfkhLGgah52yT0To0TG6NBioeyFsM=; b=o+ G0LCfTrBnq5jVlDE321HWRom/g2T7AFIliuMYQn4McomkcpAcqr4kb4NfNnDpgwI4TbzDUjHVNB9y oCrUmlPfAiVjzgf1xvcwzNK6Clg5PCzsU2rGu0LKPIrZK3LKRHbT4zWOvakcx/4Yjaye6yBf64lQP sReKqCQxfvkCxfBoM6NPZXm5Q9lJqQ+Q1Z+mOcZmhczGR1KzwA4QoM6CHI4DKhNf+KxCriVyhHXc7 BuldpceU4FaZO/zwu2ndLrJS3haZyugJSUebrX4spkP9CYAXh9JQ7nzncGXt+DlfCtyBq5yBP63c9 xIm4XWrQTm4zw3wuO0vQn0382s3vE3ow==;
  • Old-return-path: <jmm AT seger.debian.org>
  • Priority: urgent
  • Resent-date: Sun, 10 Nov 2024 19:04:42 +0000 (UTC)
  • Resent-from: debian-security-announce AT lists.debian.org
  • Resent-message-id: <-CqCOFmBulI.A.JybN.KPQMnB@bendel>
  • Resent-sender: debian-security-announce-request AT lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-5807-1 security AT debian.org
https://www.debian.org/security/ Moritz Muehlenhoff
November 10, 2024 https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : nss
CVE ID : CVE-2024-0743 CVE-2024-6602 CVE-2024-6609

Several vulnerabilities were discovered in NSS, a set of cryptographic
libraries, which may result in denial of service or potentially the
execution of arbitary code.

For the stable distribution (bookworm), these problems have been fixed in
version 2:3.87.1-1+deb12u1.

We recommend that you upgrade your nss packages.

For the detailed security status of nss please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/nss

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce AT lists.debian.org
-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmcxArIACgkQEMKTtsN8
TjZ1rBAAqef9LTGZnLYnvNEeRHVOrazORvlEBe7AIpFcBIC1nSRBQ1ZAPENNMUFi
hkzJHkwS8hTy/VasgxnZTu2MTXhCQllQjISZk4bI+6EvMa+3p9930E9qgaIjPFPq
TgYmnhFTq0bqzyDLlQpY6UJQDy0I47oRrHs8qVwEMsAtl6Wg/VkjLdQi68hPk7lp
n7R1EihvKsYwKOv6cIU+wZiRk6LzbEdVCzG73FMQhjLh0bGq/R3EFpSL8Hb05j+x
R3wWkrW+Gkw20rha5XG7tPqyl/QLLfpc3TO9UG3APUtC5LjBhKIEcUSst/9LkMRR
fK5TyjQQQ4TF1K9HbcEkPTk7kAH6SOgOF8gAqftFvorQEAXv4PxrC7qwNYDdlwus
2gZvGTif/H1SIfdQe6hZcZ7XWWP5oO1EK4IL4dXeFkbNvvbZu6HfXYKC9r5zzP0l
PH5+Zh/LBnUyRibPnF+dCy+SaHHfGOY0Twl266DT2fq4VCUGD4eSI7uAkMniWBcJ
PdqcfSvOHaGSWkKiJzD7QIZ/51/wLC+6u3goQQc07dAdMhS0tOJAF5UDA33A3tVf
pKwNffxW8d5XfyFnZm1D21K29vG1Jtfzk8io19u7UTRLVRRAu3OslvQSuvsoLZSQ
y6AwwqOUzB7niyXhZpHOqhHvBZa4C2ECB06b21YNc00xxnwiDl4=
=tVvV
-----END PGP SIGNATURE-----



  • [IT-SecNots] [SECURITY] [DSA 5807-1] nss security update, Moritz Muehlenhoff, 10.11.2024

Archiv bereitgestellt durch MHonArc 2.6.19+.

Seitenanfang