TROYANOSYVIRUS
Volver a CVEs

CVE-2017-5462

N/A

Descripcion

A flaw in DRBG number generation within the Network Security Services (NSS) library where the internal state V does not correctly carry bits over. The NSS library has been updated to fix this issue to address this issue and Firefox ESR 52.1 has been updated with NSS version 3.28.4. This vulnerability affects Thunderbird < 52.1, Firefox ESR < 45.9, Firefox ESR < 52.1, and Firefox < 53.

Detalles CVE

Puntuacion CVSS v3.1N/A
Publicado6/11/2018
Ultima modificacion11/25/2025
Fuentenvd
Avistamientos honeypot0

Productos afectados

debian:debian_linuxmozilla:firefoxmozilla:network_security_servicesmozilla:thunderbird

Debilidades (CWE)

CWE-682

Referencias

http://www.securityfocus.com/bid/97940(security@mozilla.org)
http://www.securitytracker.com/id/1038320(security@mozilla.org)
https://bugzilla.mozilla.org/show_bug.cgi?id=1345089(security@mozilla.org)
https://security.gentoo.org/glsa/201705-04(security@mozilla.org)
https://www.debian.org/security/2017/dsa-3831(security@mozilla.org)
https://www.debian.org/security/2017/dsa-3872(security@mozilla.org)
https://www.mozilla.org/security/advisories/mfsa2017-10/(security@mozilla.org)
https://www.mozilla.org/security/advisories/mfsa2017-11/(security@mozilla.org)
https://www.mozilla.org/security/advisories/mfsa2017-12/(security@mozilla.org)
https://www.mozilla.org/security/advisories/mfsa2017-13/(security@mozilla.org)
http://www.securityfocus.com/bid/97940(af854a3a-2127-422b-91ae-364da2661108)
http://www.securitytracker.com/id/1038320(af854a3a-2127-422b-91ae-364da2661108)
https://bugzilla.mozilla.org/show_bug.cgi?id=1345089(af854a3a-2127-422b-91ae-364da2661108)
https://security.gentoo.org/glsa/201705-04(af854a3a-2127-422b-91ae-364da2661108)
https://www.debian.org/security/2017/dsa-3831(af854a3a-2127-422b-91ae-364da2661108)
https://www.debian.org/security/2017/dsa-3872(af854a3a-2127-422b-91ae-364da2661108)
https://www.mozilla.org/security/advisories/mfsa2017-10/(af854a3a-2127-422b-91ae-364da2661108)
https://www.mozilla.org/security/advisories/mfsa2017-11/(af854a3a-2127-422b-91ae-364da2661108)
https://www.mozilla.org/security/advisories/mfsa2017-12/(af854a3a-2127-422b-91ae-364da2661108)
https://www.mozilla.org/security/advisories/mfsa2017-13/(af854a3a-2127-422b-91ae-364da2661108)

Correlaciones IOC

Sin correlaciones registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.