Security Advisory Critical: nss-util security update

Advisory: RHSA-2017:1102-1
Type: Security Advisory
Severity: Critical
Issued on: 2017-04-20
Last updated on: 2017-04-20
Affected Products: Red Hat Enterprise Linux HPC Node EUS (v. 7.2)
Red Hat Enterprise Linux Server AUS (v. 6.2)
Red Hat Enterprise Linux Server AUS (v. 6.4)
Red Hat Enterprise Linux Server AUS (v. 6.5)
Red Hat Enterprise Linux Server AUS (v. 6.6)
Red Hat Enterprise Linux Server AUS (v. 7.2)
Red Hat Enterprise Linux Server EUS (v. 6.7.z)
Red Hat Enterprise Linux Server EUS (v. 7.2)
Red Hat Enterprise Linux Server TUS (v. 6.5)
Red Hat Enterprise Linux Server TUS (v. 6.6)
Red Hat Enterprise Linux Server TUS (v. 7.2)
CVEs (cve.mitre.org): CVE-2017-5461

Details

An update for nss-util is now available for Red Hat Enterprise Linux 6.2
Advanced Update Support, Red Hat Enterprise Linux 6.4 Advanced Update Support,
Red Hat Enterprise Linux 6.5 Advanced Update Support, Red Hat Enterprise Linux
6.5 Telco Extended Update Support, Red Hat Enterprise Linux 6.6 Advanced Update
Support, Red Hat Enterprise Linux 6.6 Telco Extended Update Support, Red Hat
Enterprise Linux 6.7 Extended Update Support, and Red Hat Enterprise Linux 7.2
Extended Update Support.

Red Hat Product Security has rated this update as having a security impact of
Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a
detailed severity rating, is available for each vulnerability from the CVE
link(s) in the References section.

The nss-util packages provide utilities for use with the Network Security
Services (NSS) libraries.

Security Fix(es):

* An out-of-bounds write flaw was found in the way NSS performed certain
Base64-decoding operations. An attacker could use this flaw to create a
specially crafted certificate which, when parsed by NSS, could cause it to crash
or execute arbitrary code, using the permissions of the user running an
application compiled against the NSS library. (CVE-2017-5461)

Red Hat would like to thank the Mozilla project for reporting this issue.
Upstream acknowledges Ronald Crane as the original reporter.


Solution

For details on how to apply this update, which includes the changes described in
this advisory, refer to:

https://access.redhat.com/articles/11258

Updated packages

Red Hat Enterprise Linux HPC Node EUS (v. 7.2)

SRPMS:
nss-util-3.21.4-1.el7_2.src.rpm     MD5: 87c37bfa80a25d88c4bd958e35f167da
SHA-256: a26915f27fd704eef94e16c87899ab4234e048a4857835a3513de2a2d2b4594c
 
x86_64:
nss-util-3.21.4-1.el7_2.i686.rpm     MD5: 073fe082d21e0caa9a6afd970c6bde61
SHA-256: aabc5031ef7a4cfc1a6401bf12882708755366185b86fd1d2c2bf1b6d5a2f512
nss-util-3.21.4-1.el7_2.x86_64.rpm     MD5: 9bf6287cdb5cde2be0c6e0b3cc1fff2c
SHA-256: 41607a7829dedfdc1d7cba6b1813b47ed71010eefd02fcdf9d0074e21adfebbb
nss-util-debuginfo-3.21.4-1.el7_2.i686.rpm     MD5: a198e321094aaf69c5098e6b13e19dbb
SHA-256: 0977c85230a07649259b61b03ec8f3dff0166b8bafc28755954be548a953e510
nss-util-debuginfo-3.21.4-1.el7_2.x86_64.rpm     MD5: 9f4c732d2fa8ac9685e966471f1f9f7c
SHA-256: f1d4287cf84ca2a0f6869415cd6d8fd48767a5eb3329c1423de803847318c1d3
nss-util-devel-3.21.4-1.el7_2.i686.rpm     MD5: 737187aac54f0ecb913e2aa315036b80
SHA-256: fdafa27f82bd2f3a1990ccfe4551008bac6a18c7e5cb6dba8bb726ac6a783ce6
nss-util-devel-3.21.4-1.el7_2.x86_64.rpm     MD5: 8906858ede3c55f68e7f8d302844192e
SHA-256: 998b37a326d651225df183be583481265567972d73c05702bb728223555bf012
 
Red Hat Enterprise Linux Server AUS (v. 6.2)

SRPMS:
nss-util-3.13.1-11.el6_2.src.rpm     MD5: 4472fb75531f9fd9067c7fd46ad0f47c
SHA-256: d96efbcb926220302b9f7621efc778c257df79d24eb406094f7710d81e837ccf
 
x86_64:
nss-util-3.13.1-11.el6_2.i686.rpm     MD5: 9a3dc8bb0d598e21cabcf62f3135ee3f
SHA-256: 2125f99d04b53dcd91d108605391248be6794900ddca44bb23e0b48736edd859
nss-util-3.13.1-11.el6_2.x86_64.rpm     MD5: 1972a51c172bb28a9a36eaec001b2923
SHA-256: 996cc0aa3d515505fec60db57b177b4026902f4ad8d6c85e90a72226340a1348
nss-util-debuginfo-3.13.1-11.el6_2.i686.rpm     MD5: 1f775415c2319fa82734fe2084f23927
SHA-256: 636c78b311bb39bf90bbefbf13a5b49421c90f3da51942e2539a23923e5c1903
nss-util-debuginfo-3.13.1-11.el6_2.x86_64.rpm     MD5: 06bb5eb89cab51ee7f2dd2bd0ba87468
SHA-256: fb94328face52397e94d156d49e082094708c158e822341f285c9dc20f7232e4
nss-util-devel-3.13.1-11.el6_2.i686.rpm     MD5: d4e6b49c2be43cd42c351a333d1f7774
SHA-256: 6ec8e9b2a2f23d30c70c29f5c96a7ea8d28d20fdf8c398db38e86dce0ecc8dae
nss-util-devel-3.13.1-11.el6_2.x86_64.rpm     MD5: 455fdc39576ec720545df9ce0be9fcbb
SHA-256: 9886dd070a9e848579aee8da9a47bd579b6198ff37b0a7470e89afffedff5793
 
Red Hat Enterprise Linux Server AUS (v. 6.4)

SRPMS:
nss-util-3.14.3-9.el6_4.src.rpm     MD5: 15ad6ba0805882848413b5b375ca68c1
SHA-256: b55c1ecd305c84f12dee45ed59a1a8b588af870c5519a753961adc0974467a9b
 
x86_64:
nss-util-3.14.3-9.el6_4.i686.rpm     MD5: d6fa2f6f851e6820475c6504ada327f0
SHA-256: 1469bf1de42f4cb5b292f28345eec16c27feb37c2444bfffff404cea53c26abf
nss-util-3.14.3-9.el6_4.x86_64.rpm     MD5: 3f9fda64d6821e202f1ce3e592982a42
SHA-256: 7b4d4a15ef2bb58ad02c5041db9b2f5667f985c998e3c3a2cb0adf53e63708df
nss-util-debuginfo-3.14.3-9.el6_4.i686.rpm     MD5: d983365ff84c0cd90e9bba3b5d5bc118
SHA-256: 9be9202fd46af80f1ceba010b5370f07220acf5637eba4861559132f830a835f
nss-util-debuginfo-3.14.3-9.el6_4.x86_64.rpm     MD5: ac7c9828dc279b5ce5408daa4510bfad
SHA-256: 6a9e39310da84e2c0bec003f6e4d1a243d308a6336b21335fdfce0afb4af2c3c
nss-util-devel-3.14.3-9.el6_4.i686.rpm     MD5: 37677a63b1d00df97ec09767868f1846
SHA-256: eb88f589460014a71547d4b837b6a91bb1c0e1d6c3a8a65cb896a99303db9bfb
nss-util-devel-3.14.3-9.el6_4.x86_64.rpm     MD5: 0189d40c3083ed5b676d0abbac76ea00
SHA-256: 36669305ee5e55932020ad468277822ec5505a9c50e2d7ad46672eb0c4ed209c
 
Red Hat Enterprise Linux Server AUS (v. 6.5)

SRPMS:
nss-util-3.16.1-5.el6_5.src.rpm     MD5: f9b127ff051305f1b62a8cff1f97cfce
SHA-256: 027028579c0b3b97d2155f15e8422e3e9722a63cca32a24fbc77240bbb37451f
 
x86_64:
nss-util-3.16.1-5.el6_5.i686.rpm     MD5: fc78aa519e12a116ee98434d008519d3
SHA-256: 7827e04a9bd54f923f059746770aa72ea1f18c8ecfd48a35abda41556d1ce833
nss-util-3.16.1-5.el6_5.x86_64.rpm     MD5: 973398da7dd2c83512b9f5824e43ffb8
SHA-256: 0a70c98b4a5eb2c82c19c363559b562446a40d2be2c81e8f025064f3164148c0
nss-util-debuginfo-3.16.1-5.el6_5.i686.rpm     MD5: a5ddfbc6b06734209d9b70851e80a300
SHA-256: 6bfe8d7c28070495fd1a08e804e5e839f23537268b8df9a23232322954999f84
nss-util-debuginfo-3.16.1-5.el6_5.x86_64.rpm     MD5: 06a52b58edd40cbe8eacc01ef7294164
SHA-256: 18ec25f12e4301fc971d7bba5d7c6882718ceeb4ae2d978c35ec4e8db3b3f836
nss-util-devel-3.16.1-5.el6_5.i686.rpm     MD5: 5ea10f1d32e14cad0fe142037997c771
SHA-256: fe6dc444164d8d1e0bb7a8c255ef64b7807a78f164fc23a6940589456b540499
nss-util-devel-3.16.1-5.el6_5.x86_64.rpm     MD5: ed9b5f9c53237188a5f0f1e9fb1db61f
SHA-256: d7fd2c5bc54ebf967054e2a18b5c5c2e15c5fa16cfb66fc3101211e411832d65
 
Red Hat Enterprise Linux Server AUS (v. 6.6)

SRPMS:
nss-util-3.19.1-4.el6_6.src.rpm     MD5: a376d2c9b36616798352a03620fbcdbe
SHA-256: 2e131ddb36f70463d91589300283e3e8ccaad4ec956419f3c41468e40d8b975f
 
x86_64:
nss-util-3.19.1-4.el6_6.i686.rpm     MD5: 1afa40348bd30d5b9ffe6c27e55e56b6
SHA-256: 1a65867bcc9f8c1b77f47010957155dc4362630c5a957cf27ace68003d081b41
nss-util-3.19.1-4.el6_6.x86_64.rpm     MD5: 067d3ac9966a75dec6e19d9e5f2148b9
SHA-256: 7ffd4d8663be331a55464f7b8e2da482d7b0f27124382e4ec8f97104e97d4a59
nss-util-debuginfo-3.19.1-4.el6_6.i686.rpm     MD5: e943f927577bfabbcd8c8b5b5b3fae37
SHA-256: e4b65482986e914f6bbd5a4c5ec5e2705c87b7c75c824fee72b6f56ebde3e269
nss-util-debuginfo-3.19.1-4.el6_6.x86_64.rpm     MD5: 7d7c3bb747c373addd38f01795d28501
SHA-256: 786e917dc12ee7e70837a61661e73843145de0b24de6c81ca35143da79235201
nss-util-devel-3.19.1-4.el6_6.i686.rpm     MD5: ab5347b8c98e9f1e0c7f637aa5ff61b3
SHA-256: f7c3f9887fcef575878b9a01f07f2e49b5a1a3236f2e2f683fb1779866b866b2
nss-util-devel-3.19.1-4.el6_6.x86_64.rpm     MD5: cba541ca36dd689aa4f528e156154b88
SHA-256: ec73e3409e2df6f14a55e6c85a54c46f9afccd9baaab09ac75d6cd12fa1ce907
 
Red Hat Enterprise Linux Server AUS (v. 7.2)

SRPMS:
nss-util-3.21.4-1.el7_2.src.rpm     MD5: 87c37bfa80a25d88c4bd958e35f167da
SHA-256: a26915f27fd704eef94e16c87899ab4234e048a4857835a3513de2a2d2b4594c
 
x86_64:
nss-util-3.21.4-1.el7_2.i686.rpm     MD5: 073fe082d21e0caa9a6afd970c6bde61
SHA-256: aabc5031ef7a4cfc1a6401bf12882708755366185b86fd1d2c2bf1b6d5a2f512
nss-util-3.21.4-1.el7_2.x86_64.rpm     MD5: 9bf6287cdb5cde2be0c6e0b3cc1fff2c
SHA-256: 41607a7829dedfdc1d7cba6b1813b47ed71010eefd02fcdf9d0074e21adfebbb
nss-util-debuginfo-3.21.4-1.el7_2.i686.rpm     MD5: a198e321094aaf69c5098e6b13e19dbb
SHA-256: 0977c85230a07649259b61b03ec8f3dff0166b8bafc28755954be548a953e510
nss-util-debuginfo-3.21.4-1.el7_2.x86_64.rpm     MD5: 9f4c732d2fa8ac9685e966471f1f9f7c
SHA-256: f1d4287cf84ca2a0f6869415cd6d8fd48767a5eb3329c1423de803847318c1d3
nss-util-devel-3.21.4-1.el7_2.i686.rpm     MD5: 737187aac54f0ecb913e2aa315036b80
SHA-256: fdafa27f82bd2f3a1990ccfe4551008bac6a18c7e5cb6dba8bb726ac6a783ce6
nss-util-devel-3.21.4-1.el7_2.x86_64.rpm     MD5: 8906858ede3c55f68e7f8d302844192e
SHA-256: 998b37a326d651225df183be583481265567972d73c05702bb728223555bf012
 
Red Hat Enterprise Linux Server EUS (v. 6.7.z)

SRPMS:
nss-util-3.21.4-1.el6_7.src.rpm     MD5: c112d17aa5ba5f583d5b677cda2aa1ec
SHA-256: 52838b531efbdcba080eab1856ce252d5024d3862e04b1acd2843751554ae76d
 
IA-32:
nss-util-3.21.4-1.el6_7.i686.rpm     MD5: b149ca4f1fd81ca59260c47e593240ea
SHA-256: a2ee411cfb026f8207d1623eed0ae8d86fbdda22a0469e368b8aa5e4c14f68d3
nss-util-debuginfo-3.21.4-1.el6_7.i686.rpm     MD5: d38109e3771c94cfe114bcb57e00f40c
SHA-256: 317d78fdf8fcde2ef858110ec320ee3e1db7d2a35d57bcf15a97592b4a59cbfd
nss-util-devel-3.21.4-1.el6_7.i686.rpm     MD5: b21ac202775db53d4596504fcc359b4f
SHA-256: cb474d1a22d90d27ba3157cabb52f41609878d18efcbeedde0ea779b9aec0062
 
PPC:
nss-util-3.21.4-1.el6_7.ppc.rpm     MD5: 3b7cdbcbd191ae6aba8a730917293207
SHA-256: 3ab1eee4d6560fd2b0213ac58b58deddf5a0cc57b85b74bca5d09ab0b863b080
nss-util-3.21.4-1.el6_7.ppc64.rpm     MD5: a7b53d9ff523fe9ac87551ae24ede155
SHA-256: 31f26a2ac5c4b60257539e22ca99a902d908953b25277d49fbc6bd8485863bbc
nss-util-debuginfo-3.21.4-1.el6_7.ppc.rpm     MD5: 97463edb22b432066ff12b24186141d0
SHA-256: 9c5f7a6364d461347c7cbe2593d760cb95155cd20307584b54db1542d41a7c41
nss-util-debuginfo-3.21.4-1.el6_7.ppc64.rpm     MD5: 0ae4d67868a646a06df9886d4b201c54
SHA-256: 30994cfdfdd67c9bed3eb06be6c6f806e2c942ef4f109956327f12b7f8617beb
nss-util-devel-3.21.4-1.el6_7.ppc.rpm     MD5: 42dbb9e868cd91419130cf1d086becb4
SHA-256: 947798ac70ceccfee0d971ca4dc2369945135f52af933838298219b80dbef8ca
nss-util-devel-3.21.4-1.el6_7.ppc64.rpm     MD5: ae4c1d2a1ee196bd855e739c79488f34
SHA-256: 757c6da176903d6923a359f9c0fb321da68d92caa964061beec15a8d6a87ddb2
 
s390x:
nss-util-3.21.4-1.el6_7.s390.rpm     MD5: 5fd39cac31dd983e98d76a4ff1d4d9ef
SHA-256: 1f77fa9bd9cdc42be12d27d25622a96cc7d53b87f4e017a950e42f8cf28b2401
nss-util-3.21.4-1.el6_7.s390x.rpm     MD5: 19069eefe4620e8f0ffa77044a0e6a45
SHA-256: d65ec8e98a597122295ee0bc8950cbc60f582d1e59138c70cfef89f03c841478
nss-util-debuginfo-3.21.4-1.el6_7.s390.rpm     MD5: cb865312cd1f8b3b376da6eaac5ada94
SHA-256: 1129f518e89ce683e780d9b3f9d256ea6ed53f014b77202a6dad52442748f611
nss-util-debuginfo-3.21.4-1.el6_7.s390x.rpm     MD5: 5f093fc2275cf9f45f3fc4ab5d3299f3
SHA-256: 203df3cf5e952024bf275ce6b8d413cf902cd1f9291bdcf7acf04e0179115466
nss-util-devel-3.21.4-1.el6_7.s390.rpm     MD5: b374567798f7922e73bf6c49fc9aef97
SHA-256: 045a1e1d593de84e89dbcc1595e51ae73457eef83aba158789704a8eb8867657
nss-util-devel-3.21.4-1.el6_7.s390x.rpm     MD5: cf825c4a727e28bcb0546f2570672427
SHA-256: 0abc14b098251a0925d95ace2e2a0cbdaaa8ff30fe121f2897e61d732ab0c91c
 
x86_64:
nss-util-3.21.4-1.el6_7.i686.rpm     MD5: b149ca4f1fd81ca59260c47e593240ea
SHA-256: a2ee411cfb026f8207d1623eed0ae8d86fbdda22a0469e368b8aa5e4c14f68d3
nss-util-3.21.4-1.el6_7.x86_64.rpm     MD5: 7e1ad3c2e3ebacd0dd7bd2b300c1503c
SHA-256: ac73d44ed072dfc6ec551ac8d620ff7ee7823a5a1db6f49bae315cf6b74f1498
nss-util-debuginfo-3.21.4-1.el6_7.i686.rpm     MD5: d38109e3771c94cfe114bcb57e00f40c
SHA-256: 317d78fdf8fcde2ef858110ec320ee3e1db7d2a35d57bcf15a97592b4a59cbfd
nss-util-debuginfo-3.21.4-1.el6_7.x86_64.rpm     MD5: 22186b7f128d1d5dd9f46c5a61b83380
SHA-256: 87422ceafcad80468b4922eb638379fb8552d2cc909531dbf822a928f89b6ebb
nss-util-devel-3.21.4-1.el6_7.i686.rpm     MD5: b21ac202775db53d4596504fcc359b4f
SHA-256: cb474d1a22d90d27ba3157cabb52f41609878d18efcbeedde0ea779b9aec0062
nss-util-devel-3.21.4-1.el6_7.x86_64.rpm     MD5: 695cf0fcdc9fc7f0a6a3b5a2724c90ff
SHA-256: b83acb0f435278211a7823913efa646b1921fee82016bed5a1e785efff8a1705
 
Red Hat Enterprise Linux Server EUS (v. 7.2)

SRPMS:
nss-util-3.21.4-1.el7_2.src.rpm     MD5: 87c37bfa80a25d88c4bd958e35f167da
SHA-256: a26915f27fd704eef94e16c87899ab4234e048a4857835a3513de2a2d2b4594c
 
PPC:
nss-util-3.21.4-1.el7_2.ppc.rpm     MD5: cae503d543c79da6356c72ba895d8d80
SHA-256: 571fe92be776919a98ac2d771d983265bee8a289b8186ec85bc6ac765bddda9c
nss-util-3.21.4-1.el7_2.ppc64.rpm     MD5: 2024852ac1c7941d68c56ba96caee4ab
SHA-256: 2e94870c33ccae71f7f1ea46b0999be9845b1cb1cf8c1547420d13a05356fc78
nss-util-debuginfo-3.21.4-1.el7_2.ppc.rpm     MD5: c9440b1043ce569bd4f7256e82e71f3c
SHA-256: fa832b9f064e735c304d32008cde05586014ec0e8466f4571b6699fc1f57ea91
nss-util-debuginfo-3.21.4-1.el7_2.ppc64.rpm     MD5: d23308ca7fd49d765942ccc3185adad7
SHA-256: 3b3faf330a5076e2d9a270e17200b4f8e4c5d02abcc74891f37a53214c2b675c
nss-util-devel-3.21.4-1.el7_2.ppc.rpm     MD5: 82b05ab8abce789be1bc562c64eefbd2
SHA-256: a431230ea288e9f0f7757023d8a4ca5e02df6e54e33156c241d3664d49f5ce53
nss-util-devel-3.21.4-1.el7_2.ppc64.rpm     MD5: 071778a2b1a3b3150706da8466fd851a
SHA-256: 73cc6692beff82e1dbf26422c578fa12dab9275865f2bb10809061f7ad900f20
 
PPC64LE:
nss-util-3.21.4-1.el7_2.ppc64le.rpm     MD5: dc19d35513ebc2ba4b554a838a6b712d
SHA-256: 0d21c02b94bb6c34e677b423ac22a32c80ff00c72bcf9ccb0926cd72a8b150f6
nss-util-debuginfo-3.21.4-1.el7_2.ppc64le.rpm     MD5: d014e09943b2b6de3aa5b0d51f45cdd3
SHA-256: 8eafb03dacf7ca4039089744c2254698afab259f963924849473d8f2d9bee44f
nss-util-devel-3.21.4-1.el7_2.ppc64le.rpm     MD5: a8000cc944b2fac8bb1475257ec2a6fb
SHA-256: 4c1f43b6fee94f3b28c8365896866323f8eccaccc482a494af31aeda51267492
 
s390x:
nss-util-3.21.4-1.el7_2.s390.rpm     MD5: 9fa6fd91c99e393e23001ae3d994ed40
SHA-256: b2c7c920b74f5ed3bfcea4843e4aeda3939fa95db533a1d33f4e7280429d9e18
nss-util-3.21.4-1.el7_2.s390x.rpm     MD5: fc49f3fba7be13b735c9f65b59a9785f
SHA-256: a13586ef8e320254bd5fd44170e733327499c61d0bcfbe024b7f6b950b807612
nss-util-debuginfo-3.21.4-1.el7_2.s390.rpm     MD5: 162d481ffae70761ff96f7ed1c81e9c5
SHA-256: 8096f4bb00178cc1c3800eec166985f2d89a9e29a9f6cdc0008df73afa855230
nss-util-debuginfo-3.21.4-1.el7_2.s390x.rpm     MD5: 12bfc6ec998f9a554fcca5e8a7b89002
SHA-256: 3f04e3b4e07463265fc0f8706c8cf711e2bd2f698121e31c2be4d2d18baa7b1e
nss-util-devel-3.21.4-1.el7_2.s390.rpm     MD5: 5cb3953cb02c94d5d1ea54169e230e46
SHA-256: 8dd89dd0bb2ea4445bb24b2eed7b524c877375680eff8fea87f3849c95e4a267
nss-util-devel-3.21.4-1.el7_2.s390x.rpm     MD5: e69e5a95bcc79cbe48cbb6cd55fe9554
SHA-256: 8e56e05a7432871688e92a46d3d2a8d9170f035e7a7d4fa3ee38efe9e3b16f82
 
x86_64:
nss-util-3.21.4-1.el7_2.i686.rpm     MD5: 073fe082d21e0caa9a6afd970c6bde61
SHA-256: aabc5031ef7a4cfc1a6401bf12882708755366185b86fd1d2c2bf1b6d5a2f512
nss-util-3.21.4-1.el7_2.x86_64.rpm     MD5: 9bf6287cdb5cde2be0c6e0b3cc1fff2c
SHA-256: 41607a7829dedfdc1d7cba6b1813b47ed71010eefd02fcdf9d0074e21adfebbb
nss-util-debuginfo-3.21.4-1.el7_2.i686.rpm     MD5: a198e321094aaf69c5098e6b13e19dbb
SHA-256: 0977c85230a07649259b61b03ec8f3dff0166b8bafc28755954be548a953e510
nss-util-debuginfo-3.21.4-1.el7_2.x86_64.rpm     MD5: 9f4c732d2fa8ac9685e966471f1f9f7c
SHA-256: f1d4287cf84ca2a0f6869415cd6d8fd48767a5eb3329c1423de803847318c1d3
nss-util-devel-3.21.4-1.el7_2.i686.rpm     MD5: 737187aac54f0ecb913e2aa315036b80
SHA-256: fdafa27f82bd2f3a1990ccfe4551008bac6a18c7e5cb6dba8bb726ac6a783ce6
nss-util-devel-3.21.4-1.el7_2.x86_64.rpm     MD5: 8906858ede3c55f68e7f8d302844192e
SHA-256: 998b37a326d651225df183be583481265567972d73c05702bb728223555bf012
 
Red Hat Enterprise Linux Server TUS (v. 6.5)

SRPMS:
nss-util-3.16.1-5.el6_5.src.rpm     MD5: f9b127ff051305f1b62a8cff1f97cfce
SHA-256: 027028579c0b3b97d2155f15e8422e3e9722a63cca32a24fbc77240bbb37451f
 
x86_64:
nss-util-3.16.1-5.el6_5.i686.rpm     MD5: fc78aa519e12a116ee98434d008519d3
SHA-256: 7827e04a9bd54f923f059746770aa72ea1f18c8ecfd48a35abda41556d1ce833
nss-util-3.16.1-5.el6_5.x86_64.rpm     MD5: 973398da7dd2c83512b9f5824e43ffb8
SHA-256: 0a70c98b4a5eb2c82c19c363559b562446a40d2be2c81e8f025064f3164148c0
nss-util-debuginfo-3.16.1-5.el6_5.i686.rpm     MD5: a5ddfbc6b06734209d9b70851e80a300
SHA-256: 6bfe8d7c28070495fd1a08e804e5e839f23537268b8df9a23232322954999f84
nss-util-debuginfo-3.16.1-5.el6_5.x86_64.rpm     MD5: 06a52b58edd40cbe8eacc01ef7294164
SHA-256: 18ec25f12e4301fc971d7bba5d7c6882718ceeb4ae2d978c35ec4e8db3b3f836
nss-util-devel-3.16.1-5.el6_5.i686.rpm     MD5: 5ea10f1d32e14cad0fe142037997c771
SHA-256: fe6dc444164d8d1e0bb7a8c255ef64b7807a78f164fc23a6940589456b540499
nss-util-devel-3.16.1-5.el6_5.x86_64.rpm     MD5: ed9b5f9c53237188a5f0f1e9fb1db61f
SHA-256: d7fd2c5bc54ebf967054e2a18b5c5c2e15c5fa16cfb66fc3101211e411832d65
 
Red Hat Enterprise Linux Server TUS (v. 6.6)

SRPMS:
nss-util-3.19.1-4.el6_6.src.rpm     MD5: a376d2c9b36616798352a03620fbcdbe
SHA-256: 2e131ddb36f70463d91589300283e3e8ccaad4ec956419f3c41468e40d8b975f
 
x86_64:
nss-util-3.19.1-4.el6_6.i686.rpm     MD5: 1afa40348bd30d5b9ffe6c27e55e56b6
SHA-256: 1a65867bcc9f8c1b77f47010957155dc4362630c5a957cf27ace68003d081b41
nss-util-3.19.1-4.el6_6.x86_64.rpm     MD5: 067d3ac9966a75dec6e19d9e5f2148b9
SHA-256: 7ffd4d8663be331a55464f7b8e2da482d7b0f27124382e4ec8f97104e97d4a59
nss-util-debuginfo-3.19.1-4.el6_6.i686.rpm     MD5: e943f927577bfabbcd8c8b5b5b3fae37
SHA-256: e4b65482986e914f6bbd5a4c5ec5e2705c87b7c75c824fee72b6f56ebde3e269
nss-util-debuginfo-3.19.1-4.el6_6.x86_64.rpm     MD5: 7d7c3bb747c373addd38f01795d28501
SHA-256: 786e917dc12ee7e70837a61661e73843145de0b24de6c81ca35143da79235201
nss-util-devel-3.19.1-4.el6_6.i686.rpm     MD5: ab5347b8c98e9f1e0c7f637aa5ff61b3
SHA-256: f7c3f9887fcef575878b9a01f07f2e49b5a1a3236f2e2f683fb1779866b866b2
nss-util-devel-3.19.1-4.el6_6.x86_64.rpm     MD5: cba541ca36dd689aa4f528e156154b88
SHA-256: ec73e3409e2df6f14a55e6c85a54c46f9afccd9baaab09ac75d6cd12fa1ce907
 
Red Hat Enterprise Linux Server TUS (v. 7.2)

SRPMS:
nss-util-3.21.4-1.el7_2.src.rpm     MD5: 87c37bfa80a25d88c4bd958e35f167da
SHA-256: a26915f27fd704eef94e16c87899ab4234e048a4857835a3513de2a2d2b4594c
 
x86_64:
nss-util-3.21.4-1.el7_2.i686.rpm     MD5: 073fe082d21e0caa9a6afd970c6bde61
SHA-256: aabc5031ef7a4cfc1a6401bf12882708755366185b86fd1d2c2bf1b6d5a2f512
nss-util-3.21.4-1.el7_2.x86_64.rpm     MD5: 9bf6287cdb5cde2be0c6e0b3cc1fff2c
SHA-256: 41607a7829dedfdc1d7cba6b1813b47ed71010eefd02fcdf9d0074e21adfebbb
nss-util-debuginfo-3.21.4-1.el7_2.i686.rpm     MD5: a198e321094aaf69c5098e6b13e19dbb
SHA-256: 0977c85230a07649259b61b03ec8f3dff0166b8bafc28755954be548a953e510
nss-util-debuginfo-3.21.4-1.el7_2.x86_64.rpm     MD5: 9f4c732d2fa8ac9685e966471f1f9f7c
SHA-256: f1d4287cf84ca2a0f6869415cd6d8fd48767a5eb3329c1423de803847318c1d3
nss-util-devel-3.21.4-1.el7_2.i686.rpm     MD5: 737187aac54f0ecb913e2aa315036b80
SHA-256: fdafa27f82bd2f3a1990ccfe4551008bac6a18c7e5cb6dba8bb726ac6a783ce6
nss-util-devel-3.21.4-1.el7_2.x86_64.rpm     MD5: 8906858ede3c55f68e7f8d302844192e
SHA-256: 998b37a326d651225df183be583481265567972d73c05702bb728223555bf012
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

1440080 - CVE-2017-5461 nss: Write beyond bounds caused by bugs in Base64 de/encoding in nssb64d.c and nssb64e.c (MFSA 2017-10)


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/