CVE-2013-0791 (retired)

Priority
Description
The CERT_DecodeCertPackage function in Mozilla Network Security Services
(NSS), as used in Mozilla Firefox before 20.0, Firefox ESR 17.x before
17.0.5, Thunderbird before 17.0.5, Thunderbird ESR 17.x before 17.0.5,
SeaMonkey before 2.17, and other products, allows remote attackers to cause
a denial of service (out-of-bounds read and memory corruption) via a
crafted certificate.
Notes
 jdstrand> xulrunner-1.9.2 unmaintained upstream (see README.mozilla for
  details)
Assigned-to
chrisccoulson
Package
Upstream:released (20.0)
Ubuntu 14.04 LTS (Trusty Tahr):released (20.0+build1-0ubuntu1)
Package
Source: nss (LP Ubuntu Debian)
Priority: Medium
Upstream:released (3.14.2)
Ubuntu 14.04 LTS (Trusty Tahr):released (2:3.14.3-0ubuntu1)
Package
Upstream:pending (2.17)
Ubuntu 14.04 LTS (Trusty Tahr):DNE
Package
Upstream:released (17.0.5)
Ubuntu 14.04 LTS (Trusty Tahr):released (17.0.5+build1-0ubuntu1)
Package
Upstream:needs-triage
Ubuntu 14.04 LTS (Trusty Tahr):DNE
Package
Upstream:needs-triage
Ubuntu 14.04 LTS (Trusty Tahr):DNE
More Information

Updated: 2019-03-26 12:06:19 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)