Boletines de Vulnerabilidades |
DSA-3037 icedove - security update |
|
Información sobre el sistema |
|
Software afectado | Debian |
Descripción |
|
Antoine Delignat-Lavaud from Inria discovered an issue in the way NSS (theMozilla Network Security Service library, embedded in Wheezys Icedove),was parsing ASN.1 data used in signatures, making it vulnerable to asignature forgery attack. More info: https://www.debian.org/security/2014/dsa-3037 |
|
Identificadores estándar |
|
Propiedad | Valor |
CVE | CVE-2014-1568 ,DSA-3033 and DSA-3037. |
Histórico de versiones |
||
Versión | Comentario | Fecha |
1.0 | Advisory issued | 2014-10-14 |