Nadhem Alfardan

**Name of the Vulnerable Software and Affected Versions** TLS protocol (affected versions not specified) SSL protocol (affected versions not specified) **Description** The issue concerns the RC4 algorithm used in the TLS and SSL protocols, which contains single-byte biases. This weakness allows remote attackers to potentially recover plaintext through statistical analysis of ciphertext in multiple sessions that utilize the same plaintext. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** GnuTLS versions prior to 2.12.23 GnuTLS versions 3.0.x prior to 3.0.28 GnuTLS versions 3.1.x prior to 3.1.7 **Description** The issue affects the TLS implementation in GnuTLS, allowing remote attackers to conduct distinguishing attacks and plaintext-recovery attacks via statistical analysis of timing data for crafted packets. This is related to the improper consideration of timing side-channel attacks on a noncompliant MAC check operation during the processing of malformed CBC padding. **Recommendations** For GnuTLS versions prior to 2.12.23, update to version 2.12.23 or later. For GnuTLS versions 3.0.x prior to 3.0.28, update to version 3.0.28 or later. For GnuTLS versions 3.1.x prior to 3.1.7, update to version 3.1.7 or later.

**Name of the Vulnerable Software and Affected Versions** Mozilla Network Security Services (NSS) (affected versions not specified) Canonical Ubuntu Linux (affected versions not specified) Oracle Enterprise Manager Ops Center (affected versions not specified) Oracle GlassFish Communications Server (affected versions not specified) Oracle GlassFish Server (affected versions not specified) Oracle iPlanet Web Proxy Server (affected versions not specified) Oracle iPlanet Web Server (affected versions not specified) Oracle OpenSSO (affected versions not specified) Oracle Traffic Director (affected versions not specified) Oracle VM Server (affected versions not specified) Red Hat Enterprise Linux Desktop (affected versions not specified) Red Hat Enterprise Linux EUS (affected versions not specified) Red Hat Enterprise Linux Server (affected versions not specified) Red Hat Enterprise Linux Server AUS (affected versions not specified) Red Hat Enterprise Linux Workstation (affected versions not specified) **Description** The TLS implementation in Mozilla Network Security Services (NSS) is susceptible to timing side-channel attacks due to improper handling of noncompliant MAC check operations during the processing of malformed CBC padding. This allows remote attackers to conduct distinguishing attacks and plaintext-recovery attacks via statistical analysis of timing data for crafted packets. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.