CVE-2021-43527

NSS (Network Security Services) versions prior to 3.73 or 3.68.1 ESR are vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS signatures. Applications using NSS for handling signatures encoded within CMS, S/MIME, PKCS \#7, or PKCS \#12 are likely to be impacted. Applications using NSS for certificate validation or other TLS, X.509, OCSP or CRL functionality may be impacted, depending on how they configure NSS. *Note: This vulnerability does NOT impact Mozilla Firefox.* However, email clients and PDF viewers that use NSS for signature verification, such as Thunderbird, LibreOffice, Evolution and Evince are believed to be impacted. This vulnerability affects NSS < 3.73 and NSS < 3.68.1.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
mozillaCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 89%
VendorProductVersion
mozillanss
𝑥
< 3.73
mozillanss_esr
𝑥
< 3.68.1
netappcloud_backup
-
netappe-series_santricity_os_controller
11.0 ≤
𝑥
≤ 11.70.1
oraclecommunications_cloud_native_core_binding_support_function
1.11.0
oraclecommunications_cloud_native_core_network_repository_function
1.15.0
oraclecommunications_cloud_native_core_network_repository_function
1.15.1
oraclecommunications_cloud_native_core_network_slice_selection_function
1.8.0
oraclecommunications_policy_management
12.6.0.0.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
nss
bullseye
2:3.61-1+deb11u3
fixed
bullseye (security)
2:3.61-1+deb11u4
fixed
bookworm
2:3.87.1-1
fixed
sid
2:3.105-2
fixed
trixie
2:3.105-2
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
nss
lunar
Fixed 2:3.68-1ubuntu2
released
kinetic
Fixed 2:3.68-1ubuntu2
released
jammy
Fixed 2:3.68-1ubuntu2
released
impish
Fixed 2:3.68-1ubuntu1.1
released
hirsute
Fixed 2:3.61-1ubuntu2.1
released
focal
Fixed 2:3.49.1-1ubuntu1.6
released
bionic
Fixed 2:3.35-2ubuntu2.13
released
xenial
Fixed 2:3.28.4-0ubuntu0.16.04.14+esm2
released
trusty
Fixed 2:3.28.4-0ubuntu0.14.04.5+esm10
released
thunderbird
lunar
Fixed 1:91.4.0+build1.1-0ubuntu1
released
kinetic
Fixed 1:91.4.0+build1.1-0ubuntu1
released
jammy
Fixed 1:91.4.0+build1.1-0ubuntu1
released
impish
Fixed 1:91.3.1+build1-0ubuntu0.21.10.2
released
hirsute
Fixed 1:78.14.0+build1-0ubuntu0.21.04.2
released
focal
Fixed 1:78.14.0+build1-0ubuntu0.20.04.2
released
bionic
Fixed 1:78.14.0+build1-0ubuntu0.18.04.2
released
xenial
ignored
trusty
dne
Common Weakness Enumeration
References
https://bugzilla.mozilla.org/show_bug.cgi?id=1737470
https://cert-portal.siemens.com/productcert/pdf/ssa-594438.pdf
https://ftp.mozilla.org/pub/security/nss/releases/NSS_3_68_1_RTM/
https://ftp.mozilla.org/pub/security/nss/releases/NSS_3_73_RTM/
https://security.gentoo.org/glsa/202212-05
https://security.netapp.com/advisory/ntap-20211229-0002/
https://www.mozilla.org/security/advisories/mfsa2021-51/
https://www.oracle.com/security-alerts/cpuapr2022.html
https://www.starwindsoftware.com/security/sw-20220802-0001/
https://bugzilla.mozilla.org/show_bug.cgi?id=1737470
https://cert-portal.siemens.com/productcert/pdf/ssa-594438.pdf
https://ftp.mozilla.org/pub/security/nss/releases/NSS_3_68_1_RTM/
https://ftp.mozilla.org/pub/security/nss/releases/NSS_3_73_RTM/
https://security.gentoo.org/glsa/202212-05
https://security.netapp.com/advisory/ntap-20211229-0002/
https://www.mozilla.org/security/advisories/mfsa2021-51/
https://www.oracle.com/security-alerts/cpuapr2022.html
https://www.starwindsoftware.com/security/sw-20220802-0001/