TROYANOSYVIRUS
Retour aux CVEs

CVE-2015-2730

N/A

Description

Mozilla Network Security Services (NSS) before 3.19.1, as used in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and other products, does not properly perform Elliptical Curve Cryptography (ECC) multiplications, which makes it easier for remote attackers to spoof ECDSA signatures via unspecified vectors.

Details CVE

Score CVSS v3.1N/A
Publie7/6/2015
Derniere modification4/12/2025
Sourcenvd
Observations honeypot0

Produits affectes

debian:debian_linuxmozilla:firefoxmozilla:firefox_esrmozilla:network_security_servicesnovell:suse_linux_enterprise_desktopnovell:suse_linux_enterprise_servernovell:suse_linux_enterprise_software_development_kitoracle:solarisoracle:vm_server

Faiblesses (CWE)

CWE-310

References

http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00025.html(security@mozilla.org)
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00031.html(security@mozilla.org)
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00033.html(security@mozilla.org)
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00034.html(security@mozilla.org)
http://lists.opensuse.org/opensuse-security-announce/2015-08/msg00021.html(security@mozilla.org)
http://rhn.redhat.com/errata/RHSA-2015-1664.html(security@mozilla.org)
http://rhn.redhat.com/errata/RHSA-2015-1699.html(security@mozilla.org)
http://www.debian.org/security/2015/dsa-3336(security@mozilla.org)
http://www.mozilla.org/security/announce/2015/mfsa2015-64.html(security@mozilla.org)
http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html(security@mozilla.org)
http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html(security@mozilla.org)
http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html(security@mozilla.org)
http://www.securityfocus.com/bid/75541(security@mozilla.org)
http://www.securityfocus.com/bid/83399(security@mozilla.org)
http://www.securitytracker.com/id/1032783(security@mozilla.org)
http://www.ubuntu.com/usn/USN-2656-1(security@mozilla.org)
http://www.ubuntu.com/usn/USN-2656-2(security@mozilla.org)
http://www.ubuntu.com/usn/USN-2672-1(security@mozilla.org)
https://bugzilla.mozilla.org/show_bug.cgi?id=1125025(security@mozilla.org)
https://developer.mozilla.org/docs/Mozilla/Projects/NSS/NSS_3.19.1_release_notes(security@mozilla.org)
https://security.gentoo.org/glsa/201512-10(security@mozilla.org)
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00025.html(af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00031.html(af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00033.html(af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00034.html(af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-security-announce/2015-08/msg00021.html(af854a3a-2127-422b-91ae-364da2661108)
http://rhn.redhat.com/errata/RHSA-2015-1664.html(af854a3a-2127-422b-91ae-364da2661108)
http://rhn.redhat.com/errata/RHSA-2015-1699.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.debian.org/security/2015/dsa-3336(af854a3a-2127-422b-91ae-364da2661108)
http://www.mozilla.org/security/announce/2015/mfsa2015-64.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/75541(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/83399(af854a3a-2127-422b-91ae-364da2661108)
http://www.securitytracker.com/id/1032783(af854a3a-2127-422b-91ae-364da2661108)
http://www.ubuntu.com/usn/USN-2656-1(af854a3a-2127-422b-91ae-364da2661108)
http://www.ubuntu.com/usn/USN-2656-2(af854a3a-2127-422b-91ae-364da2661108)
http://www.ubuntu.com/usn/USN-2672-1(af854a3a-2127-422b-91ae-364da2661108)
https://bugzilla.mozilla.org/show_bug.cgi?id=1125025(af854a3a-2127-422b-91ae-364da2661108)
https://developer.mozilla.org/docs/Mozilla/Projects/NSS/NSS_3.19.1_release_notes(af854a3a-2127-422b-91ae-364da2661108)
https://security.gentoo.org/glsa/201512-10(af854a3a-2127-422b-91ae-364da2661108)

Correlations IOC

Aucune correlation enregistree

This product uses data from the NVD API but is not endorsed or certified by the NVD.