nss-tools vulnerabilities

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the nss-tools package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free

Vulnerability	Vulnerable Version
M Information Exposure	*
M Information Exposure	*
M Information Exposure	*
M PRNG Seed Error	<0:3.36.0-9.el6_10
C Improperly Implemented Security Check for Standard	<0:3.16.1-4.el6_5
C Time-of-check Time-of-use (TOCTOU)	<0:3.16.1-4.el6_5
C Cryptographic Issues	<0:3.16.1-4.el6_5
H Numeric Errors	<0:3.15.3-2.el6_5
H Use After Free	<0:3.28.4-4.el6_9
H CVE-2013-1739	<0:3.15.3-2.el6_5
H Access Restriction Bypass	<0:3.15.3-2.el6_5
H Numeric Errors	<0:3.15.3-2.el6_5
H Improper Input Validation	<0:3.15.3-2.el6_5
M Out-of-Bounds	<0:3.14.3-4.el6_4
M Cryptographic Issues	<0:3.14.3-4.el6_4
H NULL Pointer Dereference	<0:3.28.4-3.el6_9
C Out-of-bounds Write	<0:3.28.4-1.el6_9
M Use of a Broken or Risky Cryptographic Algorithm	*
M CVE-2016-2834	<0:3.21.3-2.el6_8
M Key Management Errors	<0:3.21.3-2.el6_8
M NULL Pointer Dereference	<0:3.21.3-2.el6_8
H CVE-2013-0743	<0:3.13.6-2.el6_3
M CVE-2016-1979	<0:3.21.0-0.3.el6_7
M CVE-2016-1978	<0:3.21.0-0.3.el6_7
M Out-of-Bounds	<0:3.13.5-1.el6_3
M Improper Data Handling	<0:3.19.1-8.el6_7
C Integer Overflow or Wraparound	<0:3.19.1-5.el6_7
C Heap-based Buffer Overflow	<0:3.19.1-5.el6_7
C Out-of-Bounds	<0:3.19.1-5.el6_7
M Improper Input Validation	*
M Improperly Implemented Security Check for Standard	<0:3.19.1-3.el6_6
M Use of a Broken or Risky Cryptographic Algorithm	<0:3.19.1-3.el6_6
M Use of a Broken or Risky Cryptographic Algorithm	*
H Not Failing Securely ('Failing Open')	*
H Improper Verification of Cryptographic Signature	<0:3.16.1-7.el6_5
C Encoding Error	<0:3.16.1-4.el6_5
L Cryptographic Issues	<0:3.12.8-1.el6_0
C Use After Free	<0:3.16.1-4.el6_5
M Use of a Broken or Risky Cryptographic Algorithm	*
L CVE-2014-1569	<0:3.18.0-5.3.el6_6
C Out-of-bounds Write	<0:3.16.1-4.el6_5
M Use of a Broken or Risky Cryptographic Algorithm	*
M Use of a Broken or Risky Cryptographic Algorithm	*
M Out-of-bounds Read	*
M Heap-based Buffer Overflow	*
L Improper Authentication	*
M Use After Free	*
M Information Exposure	*
M Out-of-bounds Read	*
L Use of a Broken or Risky Cryptographic Algorithm	*
M NULL Pointer Dereference	*
M Buffer Overflow	*
M NULL Pointer Dereference	<0:3.44.0-7.el6_10
M Missing Required Cryptographic Step	*
M Covert Timing Channel	*
M Allocation of Resources Without Limits or Throttling	*
L Covert Timing Channel	*
M Use of a Broken or Risky Cryptographic Algorithm	*
M Use of a Broken or Risky Cryptographic Algorithm	*
M Inadequate Encryption Strength	*
L CVE-2011-5094	*
M Information Exposure	*