TROYANOSYVIRUS
Retour aux CVEs

CVE-2017-5462

N/A

Description

A flaw in DRBG number generation within the Network Security Services (NSS) library where the internal state V does not correctly carry bits over. The NSS library has been updated to fix this issue to address this issue and Firefox ESR 52.1 has been updated with NSS version 3.28.4. This vulnerability affects Thunderbird < 52.1, Firefox ESR < 45.9, Firefox ESR < 52.1, and Firefox < 53.

Details CVE

Score CVSS v3.1N/A
Publie6/11/2018
Derniere modification11/25/2025
Sourcenvd
Observations honeypot0

Produits affectes

debian:debian_linuxmozilla:firefoxmozilla:network_security_servicesmozilla:thunderbird

Faiblesses (CWE)

CWE-682

References

http://www.securityfocus.com/bid/97940(security@mozilla.org)
http://www.securitytracker.com/id/1038320(security@mozilla.org)
https://bugzilla.mozilla.org/show_bug.cgi?id=1345089(security@mozilla.org)
https://security.gentoo.org/glsa/201705-04(security@mozilla.org)
https://www.debian.org/security/2017/dsa-3831(security@mozilla.org)
https://www.debian.org/security/2017/dsa-3872(security@mozilla.org)
https://www.mozilla.org/security/advisories/mfsa2017-10/(security@mozilla.org)
https://www.mozilla.org/security/advisories/mfsa2017-11/(security@mozilla.org)
https://www.mozilla.org/security/advisories/mfsa2017-12/(security@mozilla.org)
https://www.mozilla.org/security/advisories/mfsa2017-13/(security@mozilla.org)
http://www.securityfocus.com/bid/97940(af854a3a-2127-422b-91ae-364da2661108)
http://www.securitytracker.com/id/1038320(af854a3a-2127-422b-91ae-364da2661108)
https://bugzilla.mozilla.org/show_bug.cgi?id=1345089(af854a3a-2127-422b-91ae-364da2661108)
https://security.gentoo.org/glsa/201705-04(af854a3a-2127-422b-91ae-364da2661108)
https://www.debian.org/security/2017/dsa-3831(af854a3a-2127-422b-91ae-364da2661108)
https://www.debian.org/security/2017/dsa-3872(af854a3a-2127-422b-91ae-364da2661108)
https://www.mozilla.org/security/advisories/mfsa2017-10/(af854a3a-2127-422b-91ae-364da2661108)
https://www.mozilla.org/security/advisories/mfsa2017-11/(af854a3a-2127-422b-91ae-364da2661108)
https://www.mozilla.org/security/advisories/mfsa2017-12/(af854a3a-2127-422b-91ae-364da2661108)
https://www.mozilla.org/security/advisories/mfsa2017-13/(af854a3a-2127-422b-91ae-364da2661108)

Correlations IOC

Aucune correlation enregistree

This product uses data from the NVD API but is not endorsed or certified by the NVD.