859055 – (CVE-2013-1740) VUL-0: CVE-2013-1740: mozilla-nss: false start PR_Recv information disclosure security

Bug 859055 (CVE-2013-1740) - VUL-0: CVE-2013-1740: mozilla-nss: false start PR_Recv information disclosure security

Summary: VUL-0: CVE-2013-1740: mozilla-nss: false start PR_Recv information disclosure...

Status:	RESOLVED FIXED

Alias:	CVE-2013-1740

Product:	SUSE Security Incidents
Classification:	Novell Products
Component:	Incidents (show other bugs)
Version:	unspecified
Hardware:	Other Other

Priority:	P3 - Medium Severity: Normal
Target Milestone:	---
Assignee:	E-mail List
QA Contact:	Security Team bot

URL:
Whiteboard:	maint:running:56169:important maint:r...
Keywords:

Depends on:
Blocks:

Clone This Bug

Reported:	2014-01-16 16:21 UTC by Alexander Bergmann
Modified:	2014-03-25 14:04 UTC (History)
CC List:	2 users (show)

See Also:
Found By:	Security Response Team
Services Priority:
Business Priority:
Blocker:	---
Marketing QA Status:	---
IT Deployment:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Alexander Bergmann 2014-01-16 16:21:54 UTC

NSS_3.15.4_release_notes:

bmo#919877 - (CVE-2013-1740) When false start is enabled, libssl will sometimes return unencrypted, unauthenticated data from PR_Recv

References:
https://developer.mozilla.org/en-US/docs/NSS/NSS_3.15.4_release_notes
https://bugzilla.mozilla.org/show_bug.cgi?id=919877
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-1740
https://bugzilla.redhat.com/show_bug.cgi?id=1053725

Comment 1 Wolfgang Rosenauer 2014-01-16 16:27:51 UTC

Fixed package is in Factory already.
An update could be combined with the next Firefox update to versioni 27 since it's required anyway. Firefox 27 is planned to be released February, 4th. Do you want a combined update or should I submit NSS earlier already?

Comment 2 Alexander Bergmann 2014-01-17 10:22:17 UTC

Okay, we can combine this with the next Firefox update.

The TLS False Start feature is disabled anyway on all SLE and openSUSE Firefox versions. 

security-prefs.js:pref("security.ssl.enable_false_start", false);

That leaves only Chromium on openSUSE that would be affected.

Comment 3 Swamp Workflow Management 2014-01-17 23:00:14 UTC

bugbot adjusting priority

Comment 5 Swamp Workflow Management 2014-02-18 09:14:00 UTC

Update released for: MozillaFirefox, MozillaFirefox-branding-SLED, MozillaFirefox-branding-upstream, MozillaFirefox-debuginfo, MozillaFirefox-debugsource, MozillaFirefox-devel, MozillaFirefox-translations, libfreebl3, libfreebl3-32bit, libfreebl3-64bit, libfreebl3-x86, libsoftokn3, libsoftokn3-32bit, libsoftokn3-64bit, libsoftokn3-x86, mozilla-nss, mozilla-nss-32bit, mozilla-nss-64bit, mozilla-nss-debuginfo, mozilla-nss-debuginfo-32bit, mozilla-nss-debuginfo-64bit, mozilla-nss-debuginfo-x86, mozilla-nss-debugsource, mozilla-nss-devel, mozilla-nss-tools, mozilla-nss-x86
Products:
SLE-DEBUGINFO 11-SP3 (i386, ia64, ppc64, s390x, x86_64)
SLE-DESKTOP 11-SP3 (i386, x86_64)
SLE-SDK 11-SP3 (i386, ia64, ppc64, s390x, x86_64)
SLE-SERVER 11-SP3 (i386, ia64, ppc64, s390x, x86_64)
SLES4VMWARE 11-SP3 (i386, x86_64)

Comment 6 Swamp Workflow Management 2014-02-18 12:25:34 UTC

SUSE-SU-2014:0248-1: An update that fixes 14 vulnerabilities is now available.

Category: security (important)
Bug References: 859055,861847
CVE References: CVE-2014-1477,CVE-2014-1479,CVE-2014-1480,CVE-2014-1481,CVE-2014-1482,CVE-2014-1483,CVE-2014-1484,CVE-2014-1485,CVE-2014-1486,CVE-2014-1487,CVE-2014-1488,CVE-2014-1489,CVE-2014-1490,CVE-2014-1491
Sources used:
SUSE Linux Enterprise Software Development Kit 11 SP3 (src):    MozillaFirefox-24.3.0esr-0.8.1, mozilla-nss-3.15.4-0.7.1
SUSE Linux Enterprise Server 11 SP3 for VMware (src):    MozillaFirefox-24.3.0esr-0.8.1, mozilla-nss-3.15.4-0.7.1
SUSE Linux Enterprise Server 11 SP3 (src):    MozillaFirefox-24.3.0esr-0.8.1, MozillaFirefox-branding-SLED-24-0.7.14, mozilla-nss-3.15.4-0.7.1
SUSE Linux Enterprise Desktop 11 SP3 (src):    MozillaFirefox-24.3.0esr-0.8.1, MozillaFirefox-branding-SLED-24-0.7.14, mozilla-nss-3.15.4-0.7.1

Comment 8 Swamp Workflow Management 2014-02-19 15:04:32 UTC

Update released for: MozillaFirefox, MozillaFirefox-branding-SLED, MozillaFirefox-branding-upstream, MozillaFirefox-debuginfo, MozillaFirefox-debugsource, MozillaFirefox-devel, MozillaFirefox-translations, firefox-libstdc++6, libfreebl3, mozilla-nss, mozilla-nss-debuginfo, mozilla-nss-debugsource, mozilla-nss-devel, mozilla-nss-tools
Products:
SLE-SERVER 11-SP1-TERADATA (x86_64)

Comment 9 Swamp Workflow Management 2014-02-19 16:50:33 UTC

Update released for: MozillaFirefox, MozillaFirefox-branding-SLED, MozillaFirefox-branding-upstream, MozillaFirefox-debuginfo, MozillaFirefox-debugsource, MozillaFirefox-devel, MozillaFirefox-translations, firefox-libgcc_s1, firefox-libstdc++6, libfreebl3, libfreebl3-32bit, libfreebl3-x86, mozilla-nspr, mozilla-nspr-32bit, mozilla-nspr-debuginfo, mozilla-nspr-debuginfo-32bit, mozilla-nspr-debuginfo-x86, mozilla-nspr-debugsource, mozilla-nspr-devel, mozilla-nspr-x86, mozilla-nss, mozilla-nss-32bit, mozilla-nss-debuginfo, mozilla-nss-debuginfo-32bit, mozilla-nss-debuginfo-x86, mozilla-nss-debugsource, mozilla-nss-devel, mozilla-nss-tools, mozilla-nss-x86
Products:
SLE-DEBUGINFO 11-SP1 (i386, s390x, x86_64)
SLE-SERVER 11-SP1-LTSS (i386, s390x, x86_64)

Comment 10 Swamp Workflow Management 2014-02-19 16:56:03 UTC

Update released for: MozillaFirefox, MozillaFirefox-branding-SLED, MozillaFirefox-branding-upstream, MozillaFirefox-debuginfo, MozillaFirefox-debugsource, MozillaFirefox-devel, MozillaFirefox-translations, firefox-libgcc_s1, firefox-libstdc++6, libfreebl3, libfreebl3-32bit, libfreebl3-x86, mozilla-nspr, mozilla-nspr-32bit, mozilla-nspr-debuginfo, mozilla-nspr-debuginfo-32bit, mozilla-nspr-debuginfo-x86, mozilla-nspr-debugsource, mozilla-nspr-devel, mozilla-nspr-x86, mozilla-nss, mozilla-nss-32bit, mozilla-nss-debuginfo, mozilla-nss-debuginfo-32bit, mozilla-nss-debuginfo-x86, mozilla-nss-debugsource, mozilla-nss-devel, mozilla-nss-tools, mozilla-nss-x86
Products:
SLE-DEBUGINFO 11-SP2 (i386, s390x, x86_64)
SLE-SERVER 11-SP2-LTSS (i386, s390x, x86_64)

Comment 11 Swamp Workflow Management 2014-02-19 20:04:21 UTC

SUSE-SU-2014:0248-2: An update that fixes 14 vulnerabilities is now available.

Category: security (important)
Bug References: 859055,861847
CVE References: CVE-2014-1477,CVE-2014-1479,CVE-2014-1480,CVE-2014-1481,CVE-2014-1482,CVE-2014-1483,CVE-2014-1484,CVE-2014-1485,CVE-2014-1486,CVE-2014-1487,CVE-2014-1488,CVE-2014-1489,CVE-2014-1490,CVE-2014-1491
Sources used:
SUSE Linux Enterprise Server 11 SP2 LTSS (src):    MozillaFirefox-24.3.0esr-0.4.2.2, MozillaFirefox-branding-SLED-24-0.4.10.4, firefox-gcc47-4.7.2_20130108-0.16.1, mozilla-nspr-4.10.2-0.3.2, mozilla-nss-3.15.4-0.4.2.1
SUSE Linux Enterprise Server 11 SP1 LTSS (src):    MozillaFirefox-24.3.0esr-0.4.2.2, MozillaFirefox-branding-SLED-24-0.4.10.4, firefox-gcc47-4.7.2_20130108-0.16.1, mozilla-nspr-4.10.2-0.3.2, mozilla-nss-3.15.4-0.4.2.1

Comment 12 Marcus Meissner 2014-03-11 14:25:11 UTC

all done

Comment 13 Swamp Workflow Management 2014-03-25 14:04:36 UTC

Update released for: MozillaFirefox, MozillaFirefox-branding-SLED, MozillaFirefox-branding-upstream, MozillaFirefox-debuginfo, MozillaFirefox-devel, MozillaFirefox-translations, firefox-atk, firefox-atk-debuginfo, firefox-atk-devel, firefox-atk-doc, firefox-atk-lang, firefox-cairo, firefox-cairo-debuginfo, firefox-cairo-devel, firefox-cairo-doc, firefox-fontconfig, firefox-fontconfig-debuginfo, firefox-fontconfig-devel, firefox-freetype2, firefox-freetype2-debuginfo, firefox-freetype2-devel, firefox-glib2, firefox-glib2-debuginfo, firefox-glib2-devel, firefox-glib2-doc, firefox-glib2-lang, firefox-gtk2, firefox-gtk2-debuginfo, firefox-gtk2-devel, firefox-gtk2-doc, firefox-gtk2-lang, firefox-libgcc_s1, firefox-libstdc++6, firefox-pango, firefox-pango-debuginfo, firefox-pango-devel, firefox-pango-doc, firefox-pcre, firefox-pcre-debuginfo, firefox-pcre-devel, firefox-pixman, firefox-pixman-debuginfo, firefox-pixman-devel, mozilla-nspr, mozilla-nspr-debuginfo, mozilla-nspr-devel, mozilla-nss, mozilla-nss-debuginfo, mozilla-nss-devel, mozilla-nss-tools, mozilla-xulrunner191, mozilla-xulrunner191-debuginfo, mozilla-xulrunner191-devel, mozilla-xulrunner191-gnomevfs, mozilla-xulrunner191-translations, mozilla-xulrunner192, mozilla-xulrunner192-debuginfo, mozilla-xulrunner192-devel, mozilla-xulrunner192-gnome, mozilla-xulrunner192-translations, python-xpcom191
Products:
SLE-DEBUGINFO 10-SP3-TERADATA (x86_64)
SLE-SERVER 10-SP3-TERADATA (x86_64)