Vladimir Klebanov

**Name of the Vulnerable Software and Affected Versions** Network Security Services (NSS) library versions prior to 3.28.4 Firefox ESR versions prior to 52.1 Firefox ESR versions prior to 45.9 Firefox versions prior to 53 Thunderbird versions prior to 52.1 **Description** A flaw in the DRBG number generation within the Network Security Services (NSS) library affects the internal state V, which does not correctly carry bits over. This issue may allow a remote attacker to impact data integrity. The estimated number of potentially affected devices worldwide is not specified. **Recommendations** For Network Security Services (NSS) library versions prior to 3.28.4, update to version 3.28.4 or later. For Firefox ESR versions prior to 52.1, update to version 52.1 or later. For Firefox ESR versions prior to 45.9, update to version 45.9 or later. For Firefox versions prior to 53, update to version 53 or later. For Thunderbird versions prior to 52.1, update to version 52.1 or later.

**Name of the Vulnerable Software and Affected Versions** Libgcrypt versions prior to 1.5.6 Libgcrypt versions 1.6.x prior to 1.6.6 Libgcrypt versions 1.7.x prior to 1.7.3 GnuPG versions prior to 1.4.21 **Description** The issue is related to an error in the pseudorandom number generator of the Libgcrypt cryptography library, which leads to the generation of 160 bits of random number from the standard random number generator. This allows a remote attacker to predict the output. The mixing functions in the random number generator make it easier for attackers to obtain the values of 160 bits by leveraging knowledge of the previous 4640 bits. **Recommendations** For Libgcrypt versions prior to 1.5.6, update to version 1.5.6 or later. For Libgcrypt versions 1.6.x prior to 1.6.6, update to version 1.6.6 or later. For Libgcrypt versions 1.7.x prior to 1.7.3, update to version 1.7.3 or later. For GnuPG versions prior to 1.4.21, update to version 1.4.21 or later.