nss vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the nss package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free

Vulnerability	Vulnerable Version
L Cleartext Transmission of Sensitive Information	*
M Out-of-Bounds	*
M Information Exposure	*
M Information Exposure	*
M Information Exposure	*
M PRNG Seed Error	<0:3.36.0-9.el6_10
C Improperly Implemented Security Check for Standard	<0:3.16.1-4.el6_5
C Time-of-check Time-of-use (TOCTOU)	<0:3.16.1-4.el6_5
C Cryptographic Issues	<0:3.16.1-4.el6_5
H Numeric Errors	<0:3.15.3-2.el6_5
H Use After Free	<0:3.28.4-4.el6_9
H CVE-2013-1739	<0:3.15.3-2.el6_5
H Access Restriction Bypass	<0:3.15.3-2.el6_5
H Numeric Errors	<0:3.15.3-2.el6_5
H Improper Input Validation	<0:3.15.3-2.el6_5
M Out-of-Bounds	<0:3.14.3-4.el6_4
M Cryptographic Issues	<0:3.14.3-4.el6_4
H NULL Pointer Dereference	<0:3.28.4-3.el6_9
C Out-of-bounds Write	<0:3.28.4-1.el6_9
M Use of a Broken or Risky Cryptographic Algorithm	*
M CVE-2016-2834	<0:3.21.3-2.el6_8
M Key Management Errors	<0:3.21.3-2.el6_8
M NULL Pointer Dereference	<0:3.21.3-2.el6_8
H CVE-2013-0743	<0:3.13.6-2.el6_3
M CVE-2016-1979	<0:3.21.0-0.3.el6_7
M CVE-2016-1978	<0:3.21.0-0.3.el6_7
M Out-of-Bounds	<0:3.13.5-1.el6_3
M Improper Data Handling	<0:3.19.1-8.el6_7
C Integer Overflow or Wraparound	<0:3.19.1-5.el6_7
C Heap-based Buffer Overflow	<0:3.19.1-5.el6_7
C Out-of-Bounds	<0:3.19.1-5.el6_7
M Improper Input Validation	*
M Improperly Implemented Security Check for Standard	<0:3.19.1-3.el6_6
M Use of a Broken or Risky Cryptographic Algorithm	<0:3.19.1-3.el6_6
M Use of a Broken or Risky Cryptographic Algorithm	*
H Not Failing Securely ('Failing Open')	*
H Improper Verification of Cryptographic Signature	<0:3.16.1-7.el6_5
C Encoding Error	<0:3.16.1-4.el6_5
L Cryptographic Issues	<0:3.12.8-1.el6_0
C Use After Free	<0:3.16.1-4.el6_5
M Use of a Broken or Risky Cryptographic Algorithm	*
L CVE-2014-1569	<0:3.18.0-5.3.el6_6
C Out-of-bounds Write	<0:3.16.1-4.el6_5
M Use of a Broken or Risky Cryptographic Algorithm	*
M Use of a Broken or Risky Cryptographic Algorithm	*
M Out-of-bounds Read	*
M Heap-based Buffer Overflow	*
L Improper Authentication	*
M Use After Free	*
M Information Exposure	*
M Out-of-bounds Read	*
L Use of a Broken or Risky Cryptographic Algorithm	*
M NULL Pointer Dereference	*
M Buffer Overflow	*
M NULL Pointer Dereference	<0:3.44.0-7.el6_10
M Missing Required Cryptographic Step	*
M Covert Timing Channel	*
M Allocation of Resources Without Limits or Throttling	*
L Covert Timing Channel	*
M Use of a Broken or Risky Cryptographic Algorithm	*
M Use of a Broken or Risky Cryptographic Algorithm	*
M Inadequate Encryption Strength	*
L CVE-2011-5094	*
M Information Exposure	*

Vulnerability

Vulnerable Version

Cleartext Transmission of Sensitive Information