There is no fixed version for RHEL:9 kernel-headers .

nss vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the nss package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Vulnerability	Vulnerable Version
M Information Exposure	<2:3.98-0ubuntu0.20.04.1
M CVE-2023-5388	<2:3.98-0ubuntu0.20.04.1
M Information Exposure	<2:3.98-0ubuntu0.20.04.1
M CVE-2023-0767	<2:3.49.1-1ubuntu1.9
M Access of Uninitialized Pointer	<2:3.49.1-1ubuntu1.8
L Improper Certificate Validation	<2:3.49.1-1ubuntu1.8
H Out-of-bounds Write	<2:3.49.1-1ubuntu1.6
L Allocation of Resources Without Limits or Throttling	<2:3.49.1-1ubuntu1.7
M Out-of-bounds Read	<2:3.49.1-1ubuntu1.5
M Information Exposure	<2:3.49.1-1ubuntu1.4
M CVE-2020-6829	<2:3.49.1-1ubuntu1.4
M Use of a Broken or Risky Cryptographic Algorithm	<2:3.49.1-1ubuntu1.4
M Use of a Broken or Risky Cryptographic Algorithm	<2:3.49.1-1ubuntu1.2
M Information Exposure	<2:3.49.1-1ubuntu1.1
M Out-of-Bounds	<2:3.45-1ubuntu1
M Improper Certificate Validation	<2:3.45-1ubuntu1
M Out-of-bounds Read	<2:3.45-1ubuntu1