CVE-2013-1739

Name of the Vulnerable Software and Affected Versions Debian GNU/Linux versions (affected versions not specified) Mozilla Network Security Services (NSS) versions prior to 3.15.2

Description The issue concerns multiple vulnerabilities in the nss package of Debian GNU/Linux, which can be exploited remotely to disrupt the availability of protected information. The vulnerabilities in Mozilla Network Security Services (NSS) before version 3.15.2 are related to the failure to ensure that data structures are initialized before read operations. This can allow remote attackers to cause a denial of service or possibly have other unspecified impacts via vectors that trigger a decryption failure.

Recommendations For Mozilla Network Security Services (NSS) versions prior to 3.15.2, update to version 3.15.2 or later to resolve the issue. For Debian GNU/Linux, at the moment, there is no information about a newer version that contains a fix for this vulnerability.