nss-tools vulnerabilities

Known vulnerabilities in the nss-tools package. This does not include vulnerabilities belonging to this package’s dependencies.

Vulnerability	Vulnerable Version
L Cleartext Transmission of Sensitive Information	*
M Out-of-Bounds	*
M Information Exposure	*
M Information Exposure	*
M Information Exposure	*
M PRNG Seed Error	<0:3.36.0-9.el6_10
C Improperly Implemented Security Check for Standard	<0:3.16.1-4.el6_5
C Time-of-check Time-of-use (TOCTOU)	<0:3.16.1-4.el6_5
C Cryptographic Issues	<0:3.16.1-4.el6_5
H Numeric Errors	<0:3.15.3-2.el6_5
H Use After Free	<0:3.28.4-4.el6_9
H CVE-2013-1739	<0:3.15.3-2.el6_5
H Access Restriction Bypass	<0:3.15.3-2.el6_5
H Numeric Errors	<0:3.15.3-2.el6_5
H Improper Input Validation	<0:3.15.3-2.el6_5
M Out-of-Bounds	<0:3.14.3-4.el6_4
M Cryptographic Issues	<0:3.14.3-4.el6_4
H NULL Pointer Dereference	<0:3.28.4-3.el6_9
C Out-of-bounds Write	<0:3.28.4-1.el6_9
M Use of a Broken or Risky Cryptographic Algorithm	*
M CVE-2016-2834	<0:3.21.3-2.el6_8
M Key Management Errors	<0:3.21.3-2.el6_8
M NULL Pointer Dereference	<0:3.21.3-2.el6_8
H CVE-2013-0743	<0:3.13.6-2.el6_3
M CVE-2016-1979	<0:3.21.0-0.3.el6_7
M CVE-2016-1978	<0:3.21.0-0.3.el6_7
M Out-of-Bounds	<0:3.13.5-1.el6_3
M Improper Data Handling	<0:3.19.1-8.el6_7
C Integer Overflow or Wraparound	<0:3.19.1-5.el6_7
C Heap-based Buffer Overflow	<0:3.19.1-5.el6_7
C Out-of-Bounds	<0:3.19.1-5.el6_7
M Improper Input Validation	*
M Improperly Implemented Security Check for Standard	<0:3.19.1-3.el6_6
M Use of a Broken or Risky Cryptographic Algorithm	<0:3.19.1-3.el6_6
M Use of a Broken or Risky Cryptographic Algorithm	*
H Not Failing Securely ('Failing Open')	*
H Improper Verification of Cryptographic Signature	<0:3.16.1-7.el6_5
C Encoding Error	<0:3.16.1-4.el6_5
L Cryptographic Issues	<0:3.12.8-1.el6_0
C Use After Free	<0:3.16.1-4.el6_5
M Use of a Broken or Risky Cryptographic Algorithm	*
L CVE-2014-1569	<0:3.18.0-5.3.el6_6
C Out-of-bounds Write	<0:3.16.1-4.el6_5
M Use of a Broken or Risky Cryptographic Algorithm	*
M Use of a Broken or Risky Cryptographic Algorithm	*
M Out-of-bounds Read	*
M Heap-based Buffer Overflow	*
L Improper Authentication	*
M Use After Free	*
M Information Exposure	*
M Out-of-bounds Read	*
L Use of a Broken or Risky Cryptographic Algorithm	*
M NULL Pointer Dereference	*
M Buffer Overflow	*
M NULL Pointer Dereference	<0:3.44.0-7.el6_10
M Missing Required Cryptographic Step	*
M Covert Timing Channel	*
M Allocation of Resources Without Limits or Throttling	*
L Covert Timing Channel	*
M Use of a Broken or Risky Cryptographic Algorithm	*
M Use of a Broken or Risky Cryptographic Algorithm	*
M Inadequate Encryption Strength	*
L CVE-2011-5094	*
M Information Exposure	*

Vulnerability

Vulnerable Version

Cleartext Transmission of Sensitive Information