Overview

File _patchinfo of Package patchinfo.27378

<patchinfo incident="27378">
  <issue tracker="cve" id="2022-3479"/>
  <issue tracker="cve" id="2022-23491"/>
  <issue tracker="bnc" id="1207038">VUL-0: CVE-2022-23491: mozilla-nss: Update NSS to 3.79.3</issue>
  <issue tracker="bnc" id="1204272">VUL-0: CVE-2022-3479: mozilla-nss: nss client auth crash without a user certificate in the database</issue>
  <packager>MSirringhaus</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for mozilla-nss</summary>
  <description>This update for mozilla-nss fixes the following issues:

- CVE-2022-3479: Fixed a potential crash that could be triggered when
  a server requested a client authentication certificate, but the
  client had no certificates stored (bsc#1204272).
- Updated to version 3.79.3 (bsc#1207038):
  - CVE-2022-23491: Removed trust for 3 root certificates from TrustCor.
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places