[3.0] nss: security issues (CVE-2015-7575, CVE-2016-1938)
(CVE-2016-1938) Calculations with mp_div and mp_exptmod in Network Security Services
The s_mp_div function in lib/freebl/mpi/mpi.c in Mozilla Network
Security Services (NSS) before 3.21,
as used in Mozilla Firefox before 44.0, improperly divides numbers,
which might make it easier for
remote attackers to defeat cryptographic protection mechanisms by
leveraging use of the (1) mp_div or (2) mp_exptmod function.
Fixed in: NSS 3.21
Commit with the fix:
https://hg.mozilla.org/projects/nss/diff/a555bf0fc23a/lib/freebl/mpi/mpi.c
References:
https://www.mozilla.org/en-US/security/advisories/mfsa2016-07/
(CVE-2015-7575) Prevent MD5 Downgrade in TLS 1.2 Signatures.
Mozilla Network Security Services (NSS) before 3.20.2, as used in
Mozilla
Firefox before 43.0.2 and Firefox ESR 38.x before 38.5.2, does not
reject
MD5 signatures in Server Key Exchange messages in TLS 1.2 Handshake
Protocol traffic, which makes it easier for man-in-the-middle attackers
to
spoof servers by triggering a collision.
Fixes in: NSS 3.20.2
References:
https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS\_3.20.2\_release\_notes
https://www.mozilla.org/en-US/security/advisories/mfsa2015-150/
(from redmine: issue id 5187, created on 2016-02-24, closed on 2016-03-01)
- Relations:
- parent #5183 (closed)
- Changesets:
- Revision 8dd1347d on 2016-02-26T13:04:48Z:
main/nss: security fix (CVE-2015-7575, CVE-2016-1938). Fixes #5187
(cherry picked from commit 768394175984cfe44e9536dbcf5c4b822e3dd0b1)