mozilla-nssSecurity update for mozilla-nss,mozilla-nss-develSecurity update for mozilla-nss,mozilla-nss-develA security problem in the SSL handling of the NSS libraries
was found:
If an RSA key with exponent 3 is used it may be possible to
forge a PKCS verify the certificate if they are not
checking for excess data in the RSA exponentiation result
of the signature.
This bug is tracked by the Mitre CVE ID CVE-2006-4340 and
CVE-2006-4341.
A security problem in the SSL handling of the NSS libraries
was found:
If an RSA key with exponent 3 is used it may be possible to
forge a PKCS verify the certificate if they are not
checking for excess data in the RSA exponentiation result
of the signature.
This bug is tracked by the Mitre CVE ID CVE-2006-4340 and
CVE-2006-4341.
securitymozilla-nssi58609ee1e301fbff833a27daba6bc42b5127bd0de3bmozilla-nss-develi586173148253ec3fe7b59afc398bd78864fe4137b64