Mozilla Network Security Services (NSS) before 3.21.4, 3.22.x through 3.28.x before 3.28.4, 3.29.x before 3.29.5, and 3.30.x before 3.30.1 allows remote attackers to cause a denial of service (out-of-bounds write) or possibly have unspecified other impact by leveraging incorrect base64 operations.

Am I vulnerable?

The constraints below list the versions that this vulnerability is patched in, and versions that are unaffected. If a patch is ready but unrealeased, then it is pending.

Or, you can just let us figure it out for you! Appcanary continously monitor your installed packages, and tell you if any of them are vulnerable.

Sign up for monitoring

Affected package information

Release Package Patched in
devel firefox 54.0+build3-0ubuntu1
nss 2:3.28.4-0ubuntu1
thunderbird 1:52.1.1+build1-0ubuntu1
precise/esm nss 2:3.28.4-0ubuntu0.12.04.1
trusty firefox 53.0+build6-0ubuntu0.14.04.1
nss 2:3.28.4-0ubuntu0.14.04.1
thunderbird 1:52.1.1+build1-0ubuntu0.14.04.1
upstream firefox 53.0
nss 3.28.4,3.30.1
thunderbird 52.1.1
xenial firefox 53.0+build6-0ubuntu0.16.04.1
nss 2:3.28.4-0ubuntu0.16.04.1
thunderbird 1:52.1.1+build1-0ubuntu0.16.04.1
yakkety firefox 53.0+build6-0ubuntu0.16.10.1
nss 2:3.28.4-0ubuntu0.16.10.1
thunderbird 1:52.1.1+build1-0ubuntu0.16.10.1
zesty firefox 53.0+build6-0ubuntu0.17.04.1
nss 2:3.28.4-0ubuntu0.17.04.1
thunderbird 1:52.1.1+build1-0ubuntu0.17.04.1


Release Package Reason
precise firefox ignored
thunderbird ignored
nss ignored
precise/esm firefox DNE
thunderbird DNE
vivid/ubuntu-core firefox DNE
thunderbird DNE
nss DNE
vivid/stable-phone-overlay firefox DNE
thunderbird DNE
nss ignored