[Git][security-tracker-team/security-tracker][master] Add CVE-2021-43527/nss

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Dec 1 18:04:23 GMT 2021



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
76fe2ece by Salvatore Bonaccorso at 2021-12-01T19:03:57+01:00
Add CVE-2021-43527/nss

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3375,8 +3375,12 @@ CVE-2021-43529
 	RESERVED
 CVE-2021-43528
 	RESERVED
-CVE-2021-43527
+CVE-2021-43527 [Heap overflow in NSS when verifying DSA/RSA-PSS DER-encoded signatures]
 	RESERVED
+	- nss <unfixed>
+	NOTE: https://www.openwall.com/lists/oss-security/2021/12/01/4
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-51/#CVE-2021-43527
+	NOTE: https://bugzilla.mozilla.org/show_bug.cgi?id=1737470 (not yet public)
 CVE-2021-43526
 	RESERVED
 CVE-2021-43525



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/76fe2ececba85be63186a1af8b839a5d52bf9cb6

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/76fe2ececba85be63186a1af8b839a5d52bf9cb6
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211201/ecd0c577/attachment-0001.htm>


More information about the debian-security-tracker-commits mailing list