nss-3.73

[ken@…]

new version to address a security vulnerability rated as critical.

​https://www.mozilla.org/en-US/security/advisories/mfsa2021-51/

NSS (Network Security Services) versions prior to 3.73 or 3.68.1 ESR are vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS signatures. Applications using NSS for handling signatures encoded within CMS, S/MIME, PKCS #7, or PKCS #12 are likely to be impacted. Applications using NSS for certificate validation or other TLS, X.509, OCSP or CRL functionality may be impacted, depending on how they configure NSS. Note: This vulnerability does NOT impact Mozilla Firefox. However, email clients and PDF viewers that use NSS for signature verification, such as Thunderbird, LibreOffice, Evolution and Evince are believed to be impacted.

from the oss-security list: "Thunderbird 91.3.0 had shipped a workaround, that should protect against the most risky attack vector (executing the vulnerable code path when importing certificates contained in a received S/MIME message)."

I note that we are still on thunderbird-91.2.1 - a release candidate for thunderbird-91.4.0 was created on Monday, I assume that updating system nss will solve the problem for 91.2.1.

[Douglas R. Reno]

Regarding Thunderbird: Even if it isn't fixed w/ system NSS, I'll have the update in sometime in the next day or two.

[ken@…]

I will suggest that updating nss guards against more attack vectors than the workaround in thunderbird.

But I'm clearly out of my depth here <smile emoji>. I just googled for "DER-encoded DSA or RSA-PSS signatures" and apart from the mozilla advisory I got an Amazon advisory (they've updated 3.53 claiming that versions up to and including version 3.73 sic were vulnerable to a heap overflow.)

Whatever, fixed in @dc3e235f40e937cbe44cce1cca87f9e9e891ae4d 11.0-234

[ken@…]

Security Advisory SA 11.0-029