ID CVE-2013-0743
Summary ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA at the suggestion of the CVE project team. The candidate had been associated with a correct report of a security problem, but not a problem that is categorized as a vulnerability within CVE. Compromised or unauthorized SSL certificates are not within CVE's scope. Notes: none.
References
Vulnerable Configurations
CVSS
Base: 5.0
Impact:
Exploitability:
Access
VectorComplexityAuthentication
Impact
ConfidentialityIntegrityAvailability
redhat via4
advisories
bugzilla
id 891670
title = 3.13.6
oval
OR
  • comment Red Hat Enterprise Linux must be installed
    oval oval:com.redhat.rhba:tst:20070304026
  • AND
    • comment Red Hat Enterprise Linux 6 is installed
      oval oval:com.redhat.rhba:tst:20111656003
    • OR
      • AND
        • comment nss-util is earlier than 0:3.13.6-1.el6_3
          oval oval:com.redhat.rhsa:tst:20130213001
        • comment nss-util is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhba:tst:20150364016
      • AND
        • comment nss-util-devel is earlier than 0:3.13.6-1.el6_3
          oval oval:com.redhat.rhsa:tst:20130213003
        • comment nss-util-devel is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhba:tst:20150364018
      • AND
        • comment nss is earlier than 0:3.13.6-2.el6_3
          oval oval:com.redhat.rhsa:tst:20130213005
        • comment nss is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhba:tst:20150364006
      • AND
        • comment nss-devel is earlier than 0:3.13.6-2.el6_3
          oval oval:com.redhat.rhsa:tst:20130213007
        • comment nss-devel is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhba:tst:20150364008
      • AND
        • comment nss-pkcs11-devel is earlier than 0:3.13.6-2.el6_3
          oval oval:com.redhat.rhsa:tst:20130213009
        • comment nss-pkcs11-devel is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhba:tst:20150364010
      • AND
        • comment nss-sysinit is earlier than 0:3.13.6-2.el6_3
          oval oval:com.redhat.rhsa:tst:20130213011
        • comment nss-sysinit is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhba:tst:20150364012
      • AND
        • comment nss-tools is earlier than 0:3.13.6-2.el6_3
          oval oval:com.redhat.rhsa:tst:20130213013
        • comment nss-tools is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhba:tst:20150364014
      • AND
        • comment nspr is earlier than 0:4.9.2-0.el6_3.1
          oval oval:com.redhat.rhsa:tst:20130213015
        • comment nspr is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhba:tst:20150364002
      • AND
        • comment nspr-devel is earlier than 0:4.9.2-0.el6_3.1
          oval oval:com.redhat.rhsa:tst:20130213017
        • comment nspr-devel is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhba:tst:20150364004
rhsa
id RHSA-2013:0213
released 2013-01-31
severity Important
title RHSA-2013:0213: nss, nss-util, and nspr security, bug fix, and enhancement update (Important)
rpms
  • nspr-0:4.9.2-0.el6_3.1
  • nspr-debuginfo-0:4.9.2-0.el6_3.1
  • nspr-devel-0:4.9.2-0.el6_3.1
  • nss-0:3.13.6-2.el6_3
  • nss-debuginfo-0:3.13.6-2.el6_3
  • nss-devel-0:3.13.6-2.el6_3
  • nss-pkcs11-devel-0:3.13.6-2.el6_3
  • nss-sysinit-0:3.13.6-2.el6_3
  • nss-tools-0:3.13.6-2.el6_3
  • nss-util-0:3.13.6-1.el6_3
  • nss-util-debuginfo-0:3.13.6-1.el6_3
  • nss-util-devel-0:3.13.6-1.el6_3
refmap via4
bid 57258
mlist [oss-security] 20130215 CVE request: unauthorized SSL certificates by Turktrust discovered
ubuntu USN-1687-1
Last major update 16-12-2016 - 02:59
Published 25-01-2013 - 18:55
Last modified 16-12-2016 - 02:59
Back to Top