medium severity
Do your applications use this vulnerable package?
Test your applications
Overview
Network Security Services (NSS) is a set of libraries designed to support the cross-platform development of security-enabled client and server applications. Security Fix(es): * nss: ServerHello.random is all zeros when handling a v2-compatible ClientHello (CVE-2018-12384) For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section. Red Hat would like to thank the Mozilla project for reporting this issue.
- CVE
- RHSA-2018:2768
- Snyk ID
- SNYK-CENTOS7-NSSSYSINIT-321666
- Published
- 09 Oct, 2018