Your submission was sent successfully! Close

CVE-2019-17007

Published: 29 November 2019

In Network Security Services before 3.44, a malformed Netscape Certificate Sequence can cause NSS to crash, resulting in a denial of service.

Priority

Medium

CVSS 3 base score: 7.5

Status

Package Release Status
nss
Launchpad, Ubuntu, Debian 		bionic
Released (2:3.35-2ubuntu2.6)
disco
Released (2:3.42-1ubuntu2.4)
eoan Not vulnerable
(2:3.45-1ubuntu2)
precise
Released (2:3.28.4-0ubuntu0.12.04.6)
trusty
Released (2:3.28.4-0ubuntu0.14.04.5+esm3)
upstream
Released (2:3.45-1)
xenial
Released (2:3.28.4-0ubuntu0.16.04.9)

References

Bugs

Join the discussion

Canonical is offering Extended Security Maintenance

Canonical is offering Ubuntu Extended Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

Further reading