VYPR

rpm package

suse/mozilla-nss&distro=SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS

pkg:rpm/suse/mozilla-nss&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-ESPOS

Vulnerabilities (2)

  • CVE-2022-31741Dec 22, 2022
    affected < 3.79-150000.3.74.1fixed 3.79-150000.3.74.1

    A crafted CMS message could have been processed incorrectly, leading to an invalid memory read, and potentially further memory corruption. This vulnerability affects Thunderbird < 91.10, Firefox < 101, and Firefox ESR < 91.10.

  • CVE-2022-1097Dec 22, 2022
    affected < 3.68.3-150000.3.67.1fixed 3.68.3-150000.3.67.1

    NSSToken objects were referenced via direct points, and could have been accessed in an unsafe way on different threads, leading to a use-after-free and potentially exploitable crash. This vulnerability affects Thunderbird < 91.8, Firefox < 99, and Firefox ESR < 91.8.