{"id":"MGASA-2019-0374","summary":"Updated nss packages fix security vulnerability","details":"Updated nss packages fix security vulnerability:\n\nOut-of-bounds write when passing an output buffer smaller than the block\nsize to NSC_EncryptUpdate (CVE-2019-11745).\n\nAlso, rootcerts has been updated to 20191126.00\n","modified":"2026-02-01T16:44:55.774188Z","published":"2019-12-08T18:12:18Z","related":["CVE-2019-11745"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2019-0374.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=25792"},{"type":"REPORT","url":"https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.47.1_release_notes"},{"type":"REPORT","url":"https://usn.ubuntu.com/4203-1/"}],"affected":[{"package":{"name":"nss","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/nss?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.47.1-1.mga7"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2019-0374.json"}},{"package":{"name":"rootcerts","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/rootcerts?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"20191126.00-1.mga7"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2019-0374.json"}}],"schema_version":"1.7.3","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}