PT-2016-2193 · Mozilla+5 · Firefox+6

Jed Davis

Published

2016-02-11

Updated

2024-12-12

CVE-2016-2834

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Mozilla Network Security Services (NSS) versions prior to 3.23 Mozilla Firefox versions prior to 47.0

Description The issue is related to errors in the code of the Network Security Services library and the Firefox browser. It may allow a remote attacker to cause a denial of service, such as memory corruption and application crash, or have other unspecified impacts.

Recommendations For Mozilla Network Security Services (NSS) versions prior to 3.23, update to version 3.23 or later. For Mozilla Firefox versions prior to 47.0, update to version 47.0 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-17

Related Identifiers

ALT-PU-2016-1092

ALT-PU-2016-1630

ALT-PU-2017-1578

BDU:2016-01546

CESA-2016_2779

CVE-2016-2834

DLA-527-1

DSA-3688-1

OPENSUSE-SU-2016_1552-1

OPENSUSE-SU-2016_1557-1

OPENSUSE-SU-2024:10071-1

OPENSUSE-SU-2024:10451-1

OPENSUSE-SU-2024:14572-1

RHSA-2016:2779

RHSA-2016_2779

SUSE-SU-2016:1691-1

SUSE-SU-2016:1799-1

SUSE-SU-2016:2061-1

SUSE-SU-2017:1175-1

SUSE-SU-2017:1248-1

USN-2993-1

USN-3029-1

Affected Products

Alt Linux

Centos

Firefox

Network Security Services

Red Hat

Suse

Ubuntu

PT-2016-2193 · Mozilla+5 · Firefox+6

CVE-2016-2834

Weakness Enumeration

Related Identifiers

Affected Products

References · 2144