漏洞类别:RedHat
漏洞等级: 
漏洞信息
An out-of-bounds write flaw was found in the way NSS performed certain Base64-decoding operations. (CVE-2017-5461)
漏洞危害
An attacker could use this flaw to create a specially crafted certificate which, when parsed by NSS, could cause it to crash or execute arbitrary code, using the permissions of the user running an application compiled against the NSS library.
解决方案
Upgrade to the latest packages which contain a patch. Refer to Applying Package Updates to RHEL system for details.
Refer to Red Hat security advisory RHSA-2017:1103 to address this issue and obtain more information.
Patch:
Following are links for downloading patches to fix the vulnerabilities:
0day
文章评论