CVE-2015-5244 in Ubuntu

CVE-2015-5244

Priority

Description

The NSSCipherSuite option with ciphersuites enabled in mod_nss before
1.0.12 allows remote attackers to bypass application restrictions.

References

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5244

Bugs

https://bugzilla.redhat.com/show_bug.cgi?id=1259216

Notes

tyhicks> As of 2015-09-16, no fix is available.

Package

Source: libapache2-mod-nss (LP Ubuntu Debian)

Upstream:	needed
Ubuntu 12.04 ESM (Precise Pangolin):	DNE (precise was deferred [2015-09-16])
Ubuntu 14.04 LTS (Trusty Tahr):	deferred (2015-09-16)
Ubuntu 16.04 LTS (Xenial Xerus):	deferred (2015-09-16)
Ubuntu 18.04 LTS (Bionic Beaver):	deferred (2015-09-16)
Ubuntu 18.10 (Cosmic Cuttlefish):	deferred (2015-09-16)

More Information

Updated: 2018-10-22 16:17:59 UTC (commit b54e6a5171d67a3fa243eb9da698cc11f4eceed1)