A Null pointer dereference vulnerability exists in Mozilla Network Security Services due to a missing NULL check in PK11_SignWithSymKey / ssl3_ComputeRecordMACConstantTime, which could let a remote malicious user cause a Denial of Service.

According to the versions of the nss, nss-util packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities :

  - Multiple buffer handling flaws were found in the way     NSS handled cryptographic data from the network. A     remote attacker could use these flaws to crash an     application using NSS or, possibly, execute arbitrary     code with the permission of the user running the     application. (CVE-2016-2834)

  - A NULL pointer dereference flaw was found in the way     NSS handled invalid Diffie-Hellman keys. A remote     client could use this flaw to crash a TLS/SSL server     using NSS. (CVE-2016-5285)

  - It was found that Diffie Hellman Client key exchange     handling in NSS was vulnerable to small subgroup     confinement attack. An attacker could use this flaw to     recover private keys by confining the client DH key to     small subgroup of the desired group. (CVE-2016-8635)

Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

The remote host is affected by the vulnerability described in GLSA-201701-46 (Mozilla Network Security Service (NSS): Multiple vulnerabilities)

    Multiple vulnerabilities have been discovered in NSS. Please review the       CVE identifiers and technical papers referenced below for details.
  Impact :

    Remote attackers could conduct man-in-the-middle attacks, obtain access       to private key information, or cause a Denial of Service condition.
  Workaround :

    There is no known workaround at this time.

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3163-1 advisory.

    It was discovered that NSS incorrectly handled certain invalid Diffie-Hellman keys. A remote attacker     could possibly use this flaw to cause NSS to crash, resulting in a denial of service. This issue only     applied to Ubuntu 12.04 LTS, Ubuntu 14.04 LTS and Ubuntu 16.04 LTS. (CVE-2016-5285)

    Hubert Kario discovered that NSS incorrectly handled Diffie Hellman client key exchanges. A remote     attacker could possibly use this flaw to perform a small subgroup confinement attack and recover private     keys. This issue only applied to Ubuntu 12.04 LTS, Ubuntu 14.04 LTS and Ubuntu 16.04 LTS. (CVE-2016-8635)

    Franziskus Kiefer discovered that NSS incorrectly mitigated certain timing side-channel attacks. A remote     attacker could possibly use this flaw to recover private keys. (CVE-2016-9074)

    This update refreshes the NSS package to version 3.26.2 which includes the latest CA certificate bundle.

Tenable has extracted the preceding description block directly from the Ubuntu security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

CVE-2016-2834 nss: Multiple security flaws (MFSA 2016-61)

Multiple buffer handling flaws were found in the way NSS handled cryptographic data from the network. A remote attacker could use these flaws to crash an application using NSS or, possibly, execute arbitrary code with the permission of the user running the application.

CVE-2016-8635 nss: small-subgroups attack flaw

It was found that Diffie Hellman Client key exchange handling in NSS was vulnerable to small subgroup confinement attack. An attacker could use this flaw to recover private keys by confining the client DH key to small subgroup of the desired group.

CVE-2016-5285 nss: Missing NULL check in PK11_SignWithSymKey / ssl3_ComputeRecordMACConstantTime causes server crash

A NULL pointer dereference flaw was found in the way NSS handled invalid Diffie-Hellman keys. A remote client could use this flaw to crash a TLS/SSL server using NSS.

This update for MozillaFirefox, mozilla-nss fixes security issues and bugs. The following vulnerabilities were fixed in Firefox ESR 45.5.1 (bsc#1009026) :

  - CVE-2016-9079: Use-after-free in SVG Animation     (bsc#1012964 MFSA 2016-92)

  - CVE-2016-5297: Incorrect argument length checking in     JavaScript (bsc#1010401)

  - CVE-2016-9066: Integer overflow leading to a buffer     overflow in nsScriptLoadHandler (bsc#1010404)

  - CVE-2016-5296: Heap-buffer-overflow WRITE in     rasterize_edges_1 (bsc#1010395)

  - CVE-2016-9064: Addons update must verify IDs match     between current and new versions (bsc#1010402)

  - CVE-2016-5290: Memory safety bugs fixed in Firefox 50     and Firefox ESR 45.5 (bsc#1010427)

  - CVE-2016-5291: Same-origin policy violation using local     HTML file and saved shortcut file (bsc#1010410) The     following vulnerabilities were fixed in mozilla-nss     3.21.3 :

  - CVE-2016-9074: Insufficient timing side-channel     resistance in divSpoiler (bsc#1010422)

  - CVE-2016-5285: Missing NULL check in PK11_SignWithSymKey     / ssl3_ComputeRecordMACConstantTime causes server crash     (bsc#1010517) The following bugs were fixed :

  - Firefox would fail to go into fullscreen mode with some     window managers (bsc#992549)

  - font warning messages would flood console, now using     fontconfig configuration from firefox-fontconfig instead     of the system one (bsc#1000751)

Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

This update for MozillaFirefox, mozilla-nss fixes security issues and bugs. The following vulnerabilities were fixed in Firefox ESR 45.5.1 (bsc#1009026 bsc#1012964) :

  - CVE-2016-9079: Use-after-free in SVG Animation (MFSA     2016-92 bsc#1012964)

  - CVE-2016-5297: Incorrect argument length checking in     JavaScript (bsc#1010401)

  - CVE-2016-9066: Integer overflow leading to a buffer     overflow in nsScriptLoadHandler (bsc#1010404)

  - CVE-2016-5296: Heap-buffer-overflow WRITE in     rasterize_edges_1 (bsc#1010395)

  - CVE-2016-9064: Addons update must verify IDs match     between current and new versions (bsc#1010402)

  - CVE-2016-5290: Memory safety bugs fixed in Firefox 50     and Firefox ESR 45.5 (bsc#1010427)

  - CVE-2016-5291: Same-origin policy violation using local     HTML file and saved shortcut file (bsc#1010410) The     following vulnerabilities were fixed in mozilla-nss     3.21.3 :

  - CVE-2016-9074: Insufficient timing side-channel     resistance in divSpoiler (bsc#1010422)

  - CVE-2016-5285: Missing NULL check in PK11_SignWithSymKey     / ssl3_ComputeRecordMACConstantTime causes server crash     (bsc#1010517) The following bugs were fixed :

  - Firefox would fail to go into fullscreen mode with some     window managers (bsc#992549)

  - font warning messages would flood console, now using     fontconfig configuration from firefox-fontconfig instead     of the system one (bsc#1000751)

Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

This update for MozillaFirefox, mozilla-nss fixes security issues and bugs. The following vulnerabilities were fixed in Firefox ESR 45.5 (bsc#1009026) :

  - CVE-2016-5297: Incorrect argument length checking in     JavaScript (bsc#1010401)

  - CVE-2016-9066: Integer overflow leading to a buffer     overflow in nsScriptLoadHandler (bsc#1010404)

  - CVE-2016-5296: Heap-buffer-overflow WRITE in     rasterize_edges_1 (bsc#1010395)

  - CVE-2016-9064: Addons update must verify IDs match     between current and new versions (bsc#1010402)

  - CVE-2016-5290: Memory safety bugs fixed in Firefox 50     and Firefox ESR 45.5 (bsc#1010427)

  - CVE-2016-5291: Same-origin policy violation using local     HTML file and saved shortcut file (bsc#1010410) The     following vulnerabilities were fixed in mozilla-nss     3.21.3 :

  - CVE-2016-9074: Insufficient timing side-channel     resistance in divSpoiler (bsc#1010422)

  - CVE-2016-5285: Missing NULL check in PK11_SignWithSymKey     / ssl3_ComputeRecordMACConstantTime causes server crash     (bsc#1010517) The following bugs were fixed :

  - Firefox would fail to go into fullscreen mode with some     window managers (bsc#992549) The Mozilla Firefox     changelog was amended to document patched dropped in a     previous update.

Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

The nss-util packages provide utilities for use with the Network Security Services (NSS) libraries.

The following packages have been upgraded to a newer upstream version:
nss (3.12.3), nss-util (3.12.3).

Security Fix(es) :

  - Multiple buffer handling flaws were found in the way NSS     handled cryptographic data from the network. A remote     attacker could use these flaws to crash an application     using NSS or, possibly, execute arbitrary code with the     permission of the user running the application.
    (CVE-2016-2834)

  - A NULL pointer dereference flaw was found in the way NSS     handled invalid Diffie-Hellman keys. A remote client     could use this flaw to crash a TLS/SSL server using NSS.
    (CVE-2016-5285)

  - It was found that Diffie Hellman Client key exchange     handling in NSS was vulnerable to small subgroup     confinement attack. An attacker could use this flaw to     recover private keys by confining the client DH key to     small subgroup of the desired group. (CVE-2016-8635)

An update for nss and nss-util is now available for Red Hat Enterprise Linux 5, Red Hat Enterprise Linux 6, and Red Hat Enterprise Linux 7.

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Network Security Services (NSS) is a set of libraries designed to support the cross-platform development of security-enabled client and server applications.

The nss-util packages provide utilities for use with the Network Security Services (NSS) libraries.

The following packages have been upgraded to a newer upstream version:
nss (3.21.3), nss-util (3.21.3).

Security Fix(es) :

* Multiple buffer handling flaws were found in the way NSS handled cryptographic data from the network. A remote attacker could use these flaws to crash an application using NSS or, possibly, execute arbitrary code with the permission of the user running the application. (CVE-2016-2834)

* A NULL pointer dereference flaw was found in the way NSS handled invalid Diffie-Hellman keys. A remote client could use this flaw to crash a TLS/SSL server using NSS. (CVE-2016-5285)

* It was found that Diffie Hellman Client key exchange handling in NSS was vulnerable to small subgroup confinement attack. An attacker could use this flaw to recover private keys by confining the client DH key to small subgroup of the desired group. (CVE-2016-8635)

Red Hat would like to thank the Mozilla project for reporting CVE-2016-2834. The CVE-2016-8635 issue was discovered by Hubert Kario (Red Hat). Upstream acknowledges Tyson Smith and Jed Davis as the original reporter of CVE-2016-2834.

The remote Oracle Linux 5 / 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2016-2779 advisory.

    - Mozilla #1314604 / Red Hat CVE-2016-8635
    - Remove patch for CVE-2016-1950, which is included in the release

Tenable has extracted the preceding description block directly from the Oracle Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 5 / 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2016:2779 advisory.

    Network Security Services (NSS) is a set of libraries designed to support the cross-platform development     of security-enabled client and server applications.

    The nss-util packages provide utilities for use with the Network Security Services (NSS) libraries.

    The following packages have been upgraded to a newer upstream version: nss (3.21.3), nss-util (3.21.3).

    Security Fix(es):

    * Multiple buffer handling flaws were found in the way NSS handled cryptographic data from the network. A     remote attacker could use these flaws to crash an application using NSS or, possibly, execute arbitrary     code with the permission of the user running the application. (CVE-2016-2834)

    * A NULL pointer dereference flaw was found in the way NSS handled invalid Diffie-Hellman keys. A remote     client could use this flaw to crash a TLS/SSL server using NSS. (CVE-2016-5285)

    * It was found that Diffie Hellman Client key exchange handling in NSS was vulnerable to small subgroup     confinement attack. An attacker could use this flaw to recover private keys by confining the client DH key     to small subgroup of the desired group. (CVE-2016-8635)

    Red Hat would like to thank the Mozilla project for reporting CVE-2016-2834. The CVE-2016-8635 issue was     discovered by Hubert Kario (Red Hat). Upstream acknowledges Tyson Smith and Jed Davis as the original     reporter of CVE-2016-2834.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

ID	Name	Product	Family	Severity
99843	EulerOS 2.0 SP1 : nss, nss-util (EulerOS-SA-2016-1084)	Nessus	Huawei Local Security Checks	high
96643	GLSA-201701-46 : Mozilla Network Security Service (NSS): Multiple vulnerabilities (Logjam) (SLOTH)	Nessus	Gentoo Local Security Checks	high
96304	Ubuntu 14.04 LTS / 16.04 LTS : NSS vulnerabilities (USN-3163-1)	Nessus	Ubuntu Local Security Checks	medium
95894	Amazon Linux AMI : nss-util / nss,nss-softokn (ALAS-2016-774)	Nessus	Amazon Linux Local Security Checks	high
95797	SUSE SLES11 Security Update : MozillaFirefox, mozilla-nss (SUSE-SU-2016:3105-1)	Nessus	SuSE Local Security Checks	critical
95712	SUSE SLES11 Security Update : MozillaFirefox, mozilla-nss (SUSE-SU-2016:3080-1)	Nessus	SuSE Local Security Checks	critical
95565	SUSE SLED12 / SLES12 Security Update : MozillaFirefox, mozilla-nss (SUSE-SU-2016:3014-1)	Nessus	SuSE Local Security Checks	critical
95052	Scientific Linux Security Update : nss and nss-util on SL5.x, SL6.x, SL7.x i386/x86_64 (20161116)	Nessus	Scientific Linux Local Security Checks	high
94981	CentOS 5 / 6 / 7 : nss / nss-util (CESA-2016:2779)	Nessus	CentOS Local Security Checks	high
94927	Oracle Linux 5 / 6 / 7 : nss / and / nss-util (ELSA-2016-2779)	Nessus	Oracle Linux Local Security Checks	high
94912	RHEL 5 / 6 / 7 : nss and nss-util (RHSA-2016:2779)	Nessus	Red Hat Local Security Checks	high

Detections

Analytics

CVE-2016-5285

high

Tenable Plugins

high

high

medium

high

critical

critical

critical

high

high

high

high