{"id":"RLSA-2023:1368","summary":"Important: nss security and bug fix update","details":"Network Security Services (NSS) is a set of libraries designed to support the cross-platform development of security-enabled client and server applications.\n\nSecurity Fix(es):\n\n* nss: Arbitrary memory write via PKCS 12 (CVE-2023-0767)\n\nBug Fix(es):\n\n* In FIPS mode, nss should reject RSASSA-PSS salt lengths larger than the output size of the hash function used, or provide an indicator. (BZ#2177434)\n\n* Need to update FIPS review comments into NSS Rocky Linux-9. (BZ#2177875)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.","modified":"2026-02-05T09:15:10.790102Z","published":"2023-03-28T13:08:18.662791Z","upstream":["CVE-2023-0767"],"references":[{"type":"ADVISORY","url":"https://errata.rockylinux.org/RLSA-2023:1368"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2170377"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2177434"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2177875"}],"affected":[{"package":{"name":"nss","ecosystem":"Rocky Linux:9","purl":"pkg:rpm/rocky-linux/nss?distro=rocky-linux-9&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.79.0-17.el9_1"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2023:1368.json"}}],"schema_version":"1.7.3","credits":[{"name":"Rocky Enterprise Software Foundation"},{"name":"Red Hat"}]}