Stay Connected:

OVMSA-2015-0145

OVMSA-2015-0145 - nss, nss-util, and nspr security update

Type:SECURITY
Severity:CRITICAL
Release Date:2015-11-05

Description


nspr
[4.10.8-2]
- Resolves: Bug 1269360 - CVE-2015-7183
- nspr: heap-buffer overflow in PL_ARENA_ALLOCATE can lead to crash (under ASAN), potential memory corruption

nss
[3.19.1-5.0.1]
- Added nss-vendor.patch to change vendor

[3.19.1-5]
- Rebuild against updated NSPR

[3.19.1-4]
- Sync up with the rhel-6.6 branch
- Resolves: Bug 1224450

nss-util
[3.19.1-2]
- Resolves: Bug 1269355 - CVE-2015-7182 CVE-2015-7181


Related CVEs


CVE-2015-7181
CVE-2015-7182
CVE-2015-7183

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle VM 3.3 (x86_64) nspr-4.10.8-2.el6_7.src.rpm95a490e760a8b217593547e216f30c0bOVMBA-2019-0058
nss-3.19.1-5.0.1.el6_7.src.rpm69083bf2e4aaf632361bad709475ea80OVMBA-2019-0058
nss-util-3.19.1-2.el6_7.src.rpm759cfbe2cee48134edf76f900e993ca6OVMBA-2019-0058
nspr-4.10.8-2.el6_7.x86_64.rpm1711b3d5a4e8916658bd29bc0b0e39ecOVMBA-2019-0058
nss-3.19.1-5.0.1.el6_7.x86_64.rpm86817c4200a5e83011090582266cf1d8OVMBA-2019-0058
nss-sysinit-3.19.1-5.0.1.el6_7.x86_64.rpm4ab9e86bba62a12b920a9945609b763bOVMBA-2019-0058
nss-tools-3.19.1-5.0.1.el6_7.x86_64.rpm73ada0af257180313188896cbf95659dOVMBA-2019-0058
nss-util-3.19.1-2.el6_7.x86_64.rpm763d350496b2be99743957011bd26922OVMBA-2019-0058
Oracle VM 3.4 (x86_64) nspr-4.10.8-2.el6_7.src.rpm95a490e760a8b217593547e216f30c0bOVMBA-2019-0058
nss-util-3.19.1-2.el6_7.src.rpm759cfbe2cee48134edf76f900e993ca6OVMBA-2019-0058
nspr-4.10.8-2.el6_7.x86_64.rpm1711b3d5a4e8916658bd29bc0b0e39ecOVMBA-2019-0058
nss-util-3.19.1-2.el6_7.x86_64.rpm763d350496b2be99743957011bd26922OVMBA-2019-0058



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights