Ubuntu Update For Nss Vulnerability USN-927-6 Network Vulnerability

Summary

Ubuntu Update for Linux kernel vulnerabilities USN-927-6

Solution

Please Install the Updated Packages.

Insight

USN-927-1 fixed vulnerabilities in NSS on Ubuntu 9.10. This update provides the corresponding updates for Ubuntu 9.04. Original advisory details: Marsh Ray and Steve Dispensa discovered a flaw in the TLS and SSLv3 protocols. If an attacker could perform a man in the middle attack at the start of a TLS connection, the attacker could inject arbitrary content at the beginning of the user's session. This update adds support for the new new renegotiation extension and will use it when the server supports it.

Affected

nss vulnerability on Ubuntu 9.04

Severity

Classification

CVE CVE-2009-3555

CVSS	Base Score: 5.8 AV:N/AC:M/Au:N/C:N/I:P/A:P

Related Vulnerabilities

Ubuntu Update for cmake vulnerabilities USN-890-6
Ubuntu Update for apport USN-1668-1
Ubuntu Update for bluez-utils vulnerability USN-413-1
Ubuntu Update for apt USN-2353-1
Ubuntu Update for backuppc USN-1249-1

Ubuntu Update for nss vulnerability USN-927-6

Take action and discover your vulnerabilities