bug#52228: NSS CVE-2021-43527 "memory corruption validating dsa/rsa-pss

bug-guix

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

bug#52228: NSS CVE-2021-43527 "memory corruption validating dsa/rsa-pss

From:	Maxim Cournoyer
Subject:	bug#52228: NSS CVE-2021-43527 "memory corruption validating dsa/rsa-pss signatures"
Date:	Tue, 22 Mar 2022 22:34:36 -0400
User-agent:	Gnus/5.13 (Gnus v5.13) Emacs/27.2 (gnu/linux)

Hello,

Leo Famulari <leo@famulari.name> writes:

> On Fri, Dec 03, 2021 at 07:28:18PM -0500, Mark H Weaver wrote:
>> Hi,
>> 
>> For the record, I've pushed commits
>> 080a5de2eeb5e0da83ae9fd94488508d5227c4e3 and
>> d49e7a592f2f12cd1f9e07edfeebe0a2771f491e to the 'master' branch, which I
>> believe should fix this issue in our 'nss', 'icecat', 'icedove',
>> 'icedove-wayland', and 'geierlein' packages.
>
> Thanks for working on it, Mark.
>
>> Does anyone know if there are other packages in Guix that include a
>> bundled copy of NSS?  If not, I guess this bug can be closed.
>
> Personally I don't know... I hope not. Let's wait a couple more days
> before closing.

It's been 15 weeks :-).

Closing.

Maxim

[Prev in Thread]

Current Thread

[Next in Thread]

bug#52228: NSS CVE-2021-43527 "memory corruption validating dsa/rsa-pss signatures", Maxim Cournoyer <=

Prev by Date: bug#47319: python-lxml is vulnerable to CVE-2021-28957
Next by Date: bug#47544: rust-slice-deque is vulnerable to CVE-2021-29938
Previous by thread: bug#47319: python-lxml is vulnerable to CVE-2021-28957
Next by thread: bug#47544: rust-slice-deque is vulnerable to CVE-2021-29938
Index(es):
- Date
- Thread