Skip to navigation Skip to main content

Utilities

  • Subscriptions
  • Downloads
  • Containers
  • Support Cases
Red Hat Customer Portal
  • Subscriptions
  • Downloads
  • Containers
  • Support Cases
  • Products & Services

    Products

    Support

    • Production Support
    • Development Support
    • Product Life Cycles

    Services

    • Consulting
    • Technical Account Management
    • Training & Certifications

    Documentation

    • Red Hat Enterprise Linux
    • Red Hat JBoss Enterprise Application Platform
    • Red Hat OpenStack Platform
    • Red Hat OpenShift Container Platform
    All Documentation

    Ecosystem Catalog

    • Red Hat Partner Ecosystem
    • Partner Resources
  • Tools

    Tools

    • Troubleshoot a product issue
    • Packages
    • Errata

    Customer Portal Labs

    • Configuration
    • Deployment
    • Security
    • Troubleshoot
    All labs

    Red Hat Insights

    Increase visibility into IT operations to detect and resolve technical issues before they impact your business.

    Learn More
    Go to Insights
  • Security

    Red Hat Product Security Center

    Engage with our Red Hat Product Security team, access security updates, and ensure your environments are not exposed to any known security vulnerabilities.

    Product Security Center

    Security Updates

    • Security Advisories
    • Red Hat CVE Database
    • Security Labs

    Keep your systems secure with Red Hat's specialized responses to security vulnerabilities.

    View Responses

    Resources

    • Security Blog
    • Security Measurement
    • Severity Ratings
    • Backporting Policies
    • Product Signing (GPG) Keys
  • Community

    Customer Portal Community

    • Discussions
    • Private Groups
    Community Activity

    Customer Events

    • Red Hat Convergence
    • Red Hat Summit

    Stories

    • Red Hat Subscription Value
    • You Asked. We Acted.
    • Open Source Communities
Or troubleshoot an issue.

Select Your Language

  • English
  • 한국어
  • 日本語
  • 中文 (中国)

Infrastructure and Management

  • Red Hat Enterprise Linux
  • Red Hat Virtualization
  • Red Hat Identity Management
  • Red Hat Directory Server
  • Red Hat Certificate System
  • Red Hat Satellite
  • Red Hat Subscription Management
  • Red Hat Update Infrastructure
  • Red Hat Insights
  • Red Hat Ansible Automation Platform

Cloud Computing

  • Red Hat OpenShift
  • Red Hat CloudForms
  • Red Hat OpenStack Platform
  • Red Hat OpenShift Container Platform
  • Red Hat OpenShift Data Science
  • Red Hat OpenShift Online
  • Red Hat OpenShift Dedicated
  • Red Hat Advanced Cluster Security for Kubernetes
  • Red Hat Advanced Cluster Management for Kubernetes
  • Red Hat Quay
  • OpenShift Dev Spaces
  • Red Hat OpenShift Service on AWS

Storage

  • Red Hat Gluster Storage
  • Red Hat Hyperconverged Infrastructure
  • Red Hat Ceph Storage
  • Red Hat OpenShift Data Foundation

Runtimes

  • Red Hat Runtimes
  • Red Hat JBoss Enterprise Application Platform
  • Red Hat Data Grid
  • Red Hat JBoss Web Server
  • Red Hat Single Sign On
  • Red Hat support for Spring Boot
  • Red Hat build of Node.js
  • Red Hat build of Thorntail
  • Red Hat build of Eclipse Vert.x
  • Red Hat build of OpenJDK
  • Red Hat build of Quarkus

Integration and Automation

  • Red Hat Integration
  • Red Hat Fuse
  • Red Hat AMQ
  • Red Hat 3scale API Management
  • Red Hat JBoss Data Virtualization
  • Red Hat Process Automation
  • Red Hat Process Automation Manager
  • Red Hat Decision Manager
All Products
Red Hat Product Errata RHSA-2021:4904 - Security Advisory
Issued:
2021-12-01
Updated:
2021-12-01

RHSA-2021:4904 - Security Advisory

  • Overview
  • Updated Packages

Synopsis

Critical: nss security update

Type/Severity

Security Advisory: Critical

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for nss is now available for Red Hat Enterprise Linux 7.

Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

Network Security Services (NSS) is a set of libraries designed to support the cross-platform development of security-enabled client and server applications.

Security Fix(es):

  • nss: Memory corruption in decodeECorDsaSignature with DSA signatures (and RSA-PSS) (CVE-2021-43527)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

After installing this update, applications using NSS (for example, Firefox) must be restarted for this update to take effect.

Affected Products

  • Red Hat Enterprise Linux Server 7 x86_64
  • Red Hat Enterprise Linux Workstation 7 x86_64
  • Red Hat Enterprise Linux Desktop 7 x86_64
  • Red Hat Enterprise Linux for IBM z Systems 7 s390x
  • Red Hat Enterprise Linux for Power, big endian 7 ppc64
  • Red Hat Enterprise Linux for Scientific Computing 7 x86_64
  • Red Hat Enterprise Linux for Power, little endian 7 ppc64le

Fixes

  • BZ - 2024370 - CVE-2021-43527 nss: Memory corruption in decodeECorDsaSignature with DSA signatures (and RSA-PSS)

CVEs

  • CVE-2021-43527

References

  • https://access.redhat.com/security/updates/classification/#critical
  • https://access.redhat.com/security/vulnerabilities/RHSB-2021-008
Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux Server 7

SRPM
nss-3.67.0-4.el7_9.src.rpm SHA-256: 4a1669dbddf0702a1934707727da7246b46c8c61d6ed8069597aa5707a0e6516
x86_64
nss-3.67.0-4.el7_9.i686.rpm SHA-256: 62124b15091e1a7d5bf19a4bce6416a883e59c03b1d53808364c23982c477e60
nss-3.67.0-4.el7_9.x86_64.rpm SHA-256: 91ae8c0a35b85e2ed1e6aacaaf6eb8ec3fe245c66514a85c152391b385140e4d
nss-debuginfo-3.67.0-4.el7_9.i686.rpm SHA-256: d1abff588748d94ccea9a6ebde7b40e1cbd40db6cb3f0c69974a7f3a644dfdf6
nss-debuginfo-3.67.0-4.el7_9.i686.rpm SHA-256: d1abff588748d94ccea9a6ebde7b40e1cbd40db6cb3f0c69974a7f3a644dfdf6
nss-debuginfo-3.67.0-4.el7_9.x86_64.rpm SHA-256: 059ef6c7bc8ef57b8da061af993930f5375dae691df69b730ded4efed398f93a
nss-debuginfo-3.67.0-4.el7_9.x86_64.rpm SHA-256: 059ef6c7bc8ef57b8da061af993930f5375dae691df69b730ded4efed398f93a
nss-devel-3.67.0-4.el7_9.i686.rpm SHA-256: e0a546372de4987777cd49ec59b15d7518efb3c5bec8ae69e2a254f05f60a579
nss-devel-3.67.0-4.el7_9.x86_64.rpm SHA-256: c5756e1256d166c32107ae558c5444dadb308ee8ff270eb12c4da3e5af7a2bb3
nss-pkcs11-devel-3.67.0-4.el7_9.i686.rpm SHA-256: 97b42e48fa677450464abef511366093973efb2445d41f37bef149b9ffef1ebf
nss-pkcs11-devel-3.67.0-4.el7_9.x86_64.rpm SHA-256: 67a614b01984001e5e2101978b237ae61fc9a9923bde337365fe7a2f23f45250
nss-sysinit-3.67.0-4.el7_9.x86_64.rpm SHA-256: adfb9881bce69fb43dbeb07e9fb6ba3a3adfb3c40bca596d3adab2fe8913a00a
nss-tools-3.67.0-4.el7_9.x86_64.rpm SHA-256: 4d6ae0cacbcc3ff539cd660a3b2b5b86b8e2512a3671e4d601a3359d1ac7a887

Red Hat Enterprise Linux Workstation 7

SRPM
nss-3.67.0-4.el7_9.src.rpm SHA-256: 4a1669dbddf0702a1934707727da7246b46c8c61d6ed8069597aa5707a0e6516
x86_64
nss-3.67.0-4.el7_9.i686.rpm SHA-256: 62124b15091e1a7d5bf19a4bce6416a883e59c03b1d53808364c23982c477e60
nss-3.67.0-4.el7_9.x86_64.rpm SHA-256: 91ae8c0a35b85e2ed1e6aacaaf6eb8ec3fe245c66514a85c152391b385140e4d
nss-debuginfo-3.67.0-4.el7_9.i686.rpm SHA-256: d1abff588748d94ccea9a6ebde7b40e1cbd40db6cb3f0c69974a7f3a644dfdf6
nss-debuginfo-3.67.0-4.el7_9.i686.rpm SHA-256: d1abff588748d94ccea9a6ebde7b40e1cbd40db6cb3f0c69974a7f3a644dfdf6
nss-debuginfo-3.67.0-4.el7_9.x86_64.rpm SHA-256: 059ef6c7bc8ef57b8da061af993930f5375dae691df69b730ded4efed398f93a
nss-debuginfo-3.67.0-4.el7_9.x86_64.rpm SHA-256: 059ef6c7bc8ef57b8da061af993930f5375dae691df69b730ded4efed398f93a
nss-devel-3.67.0-4.el7_9.i686.rpm SHA-256: e0a546372de4987777cd49ec59b15d7518efb3c5bec8ae69e2a254f05f60a579
nss-devel-3.67.0-4.el7_9.x86_64.rpm SHA-256: c5756e1256d166c32107ae558c5444dadb308ee8ff270eb12c4da3e5af7a2bb3
nss-pkcs11-devel-3.67.0-4.el7_9.i686.rpm SHA-256: 97b42e48fa677450464abef511366093973efb2445d41f37bef149b9ffef1ebf
nss-pkcs11-devel-3.67.0-4.el7_9.x86_64.rpm SHA-256: 67a614b01984001e5e2101978b237ae61fc9a9923bde337365fe7a2f23f45250
nss-sysinit-3.67.0-4.el7_9.x86_64.rpm SHA-256: adfb9881bce69fb43dbeb07e9fb6ba3a3adfb3c40bca596d3adab2fe8913a00a
nss-tools-3.67.0-4.el7_9.x86_64.rpm SHA-256: 4d6ae0cacbcc3ff539cd660a3b2b5b86b8e2512a3671e4d601a3359d1ac7a887

Red Hat Enterprise Linux Desktop 7

SRPM
nss-3.67.0-4.el7_9.src.rpm SHA-256: 4a1669dbddf0702a1934707727da7246b46c8c61d6ed8069597aa5707a0e6516
x86_64
nss-3.67.0-4.el7_9.i686.rpm SHA-256: 62124b15091e1a7d5bf19a4bce6416a883e59c03b1d53808364c23982c477e60
nss-3.67.0-4.el7_9.x86_64.rpm SHA-256: 91ae8c0a35b85e2ed1e6aacaaf6eb8ec3fe245c66514a85c152391b385140e4d
nss-debuginfo-3.67.0-4.el7_9.i686.rpm SHA-256: d1abff588748d94ccea9a6ebde7b40e1cbd40db6cb3f0c69974a7f3a644dfdf6
nss-debuginfo-3.67.0-4.el7_9.i686.rpm SHA-256: d1abff588748d94ccea9a6ebde7b40e1cbd40db6cb3f0c69974a7f3a644dfdf6
nss-debuginfo-3.67.0-4.el7_9.x86_64.rpm SHA-256: 059ef6c7bc8ef57b8da061af993930f5375dae691df69b730ded4efed398f93a
nss-debuginfo-3.67.0-4.el7_9.x86_64.rpm SHA-256: 059ef6c7bc8ef57b8da061af993930f5375dae691df69b730ded4efed398f93a
nss-devel-3.67.0-4.el7_9.i686.rpm SHA-256: e0a546372de4987777cd49ec59b15d7518efb3c5bec8ae69e2a254f05f60a579
nss-devel-3.67.0-4.el7_9.x86_64.rpm SHA-256: c5756e1256d166c32107ae558c5444dadb308ee8ff270eb12c4da3e5af7a2bb3
nss-pkcs11-devel-3.67.0-4.el7_9.i686.rpm SHA-256: 97b42e48fa677450464abef511366093973efb2445d41f37bef149b9ffef1ebf
nss-pkcs11-devel-3.67.0-4.el7_9.x86_64.rpm SHA-256: 67a614b01984001e5e2101978b237ae61fc9a9923bde337365fe7a2f23f45250
nss-sysinit-3.67.0-4.el7_9.x86_64.rpm SHA-256: adfb9881bce69fb43dbeb07e9fb6ba3a3adfb3c40bca596d3adab2fe8913a00a
nss-tools-3.67.0-4.el7_9.x86_64.rpm SHA-256: 4d6ae0cacbcc3ff539cd660a3b2b5b86b8e2512a3671e4d601a3359d1ac7a887

Red Hat Enterprise Linux for IBM z Systems 7

SRPM
nss-3.67.0-4.el7_9.src.rpm SHA-256: 4a1669dbddf0702a1934707727da7246b46c8c61d6ed8069597aa5707a0e6516
s390x
nss-3.67.0-4.el7_9.s390.rpm SHA-256: 38b79b572f474666fd7d5bc64ede51bf9899ca94d3c6a7cb91b9ead67d1f72e6
nss-3.67.0-4.el7_9.s390x.rpm SHA-256: b0182680ffa745ef9166b4eb5a680aaf47e5a8f31ae1b8d63a3bc0efa72b5ec6
nss-debuginfo-3.67.0-4.el7_9.s390.rpm SHA-256: b4ed50bfe65a04cb057acd6fe5bedc61d47edc3da83c2e33a51e827970d1cb55
nss-debuginfo-3.67.0-4.el7_9.s390.rpm SHA-256: b4ed50bfe65a04cb057acd6fe5bedc61d47edc3da83c2e33a51e827970d1cb55
nss-debuginfo-3.67.0-4.el7_9.s390x.rpm SHA-256: 1b7093d91d30eb23ef85fec23a7a3d796cf9a4845f9aabf13ac316a3a2cf1dd2
nss-debuginfo-3.67.0-4.el7_9.s390x.rpm SHA-256: 1b7093d91d30eb23ef85fec23a7a3d796cf9a4845f9aabf13ac316a3a2cf1dd2
nss-devel-3.67.0-4.el7_9.s390.rpm SHA-256: 203ad7c21057d05b54657b91f76400778760aac19a95c68fe0e9f8a6aede63b4
nss-devel-3.67.0-4.el7_9.s390x.rpm SHA-256: 4598539638dcfbb4e58e41e84ad13ad81a25c30bbef7e59b9e9fb7a12055b55e
nss-pkcs11-devel-3.67.0-4.el7_9.s390.rpm SHA-256: 01d1cef5c17c9865082e84ee146de541ce8bfc52b53aa11c8f394271b15e9404
nss-pkcs11-devel-3.67.0-4.el7_9.s390x.rpm SHA-256: 738c65e46e107860427e8f5e16806c390f08bc9615eb0a11ca23eb4ea6e63dcd
nss-sysinit-3.67.0-4.el7_9.s390x.rpm SHA-256: 34c7c9921291b056127222e17b2a2d3e8c10ac66d5fc6fd75bda51feffd13e35
nss-tools-3.67.0-4.el7_9.s390x.rpm SHA-256: aa563dc19bf1cd4d9133badd7a4a4318a9d171fd0075c4a849e2353823e0d5fd

Red Hat Enterprise Linux for Power, big endian 7

SRPM
nss-3.67.0-4.el7_9.src.rpm SHA-256: 4a1669dbddf0702a1934707727da7246b46c8c61d6ed8069597aa5707a0e6516
ppc64
nss-3.67.0-4.el7_9.ppc.rpm SHA-256: 0a2286efd426ca5bb592571d8288ab174489b301fd5a8e7e0fd06c7ee815e5a1
nss-3.67.0-4.el7_9.ppc64.rpm SHA-256: d67f00db05a263b9d65e6d9599268816b9d0bc57439798f90e29bd8e7974bc1d
nss-debuginfo-3.67.0-4.el7_9.ppc.rpm SHA-256: 3b9e13f9bdc69a5a1bcb1aab8ede4ddc3617602d8d3536541f3a4005901dcc5f
nss-debuginfo-3.67.0-4.el7_9.ppc.rpm SHA-256: 3b9e13f9bdc69a5a1bcb1aab8ede4ddc3617602d8d3536541f3a4005901dcc5f
nss-debuginfo-3.67.0-4.el7_9.ppc64.rpm SHA-256: a995df7f17350d94bd639a16c9cda490c0d59110dcfc42e98de0e5b6b5f5faf4
nss-debuginfo-3.67.0-4.el7_9.ppc64.rpm SHA-256: a995df7f17350d94bd639a16c9cda490c0d59110dcfc42e98de0e5b6b5f5faf4
nss-devel-3.67.0-4.el7_9.ppc.rpm SHA-256: 1ee18d369a4a841a3b771486065048ebfe8330ccee10a05dfb07dc42f2062b42
nss-devel-3.67.0-4.el7_9.ppc64.rpm SHA-256: 5087e3369901f9fb86431a990aecad6aea77efb6e077ff24330d68679c1fe6bc
nss-pkcs11-devel-3.67.0-4.el7_9.ppc.rpm SHA-256: cf2e7e0567eca028b0edcce5cedf1f28560e08464a12993477c7b6e3a513fbbf
nss-pkcs11-devel-3.67.0-4.el7_9.ppc64.rpm SHA-256: f3c0a8f3008811d5278f7f976a499e3d533f63f5bbad7c39b6f4570b49361658
nss-sysinit-3.67.0-4.el7_9.ppc64.rpm SHA-256: 94440b84fd059130fd6c7ea4f0b3423f1df23d9c99b2cf75a377feb9852c55f5
nss-tools-3.67.0-4.el7_9.ppc64.rpm SHA-256: a8e2b04a089c0086b83805f8ab0cbac75a6ea756b61ca1efe368b0504b6304e5

Red Hat Enterprise Linux for Scientific Computing 7

SRPM
nss-3.67.0-4.el7_9.src.rpm SHA-256: 4a1669dbddf0702a1934707727da7246b46c8c61d6ed8069597aa5707a0e6516
x86_64
nss-3.67.0-4.el7_9.i686.rpm SHA-256: 62124b15091e1a7d5bf19a4bce6416a883e59c03b1d53808364c23982c477e60
nss-3.67.0-4.el7_9.x86_64.rpm SHA-256: 91ae8c0a35b85e2ed1e6aacaaf6eb8ec3fe245c66514a85c152391b385140e4d
nss-debuginfo-3.67.0-4.el7_9.i686.rpm SHA-256: d1abff588748d94ccea9a6ebde7b40e1cbd40db6cb3f0c69974a7f3a644dfdf6
nss-debuginfo-3.67.0-4.el7_9.i686.rpm SHA-256: d1abff588748d94ccea9a6ebde7b40e1cbd40db6cb3f0c69974a7f3a644dfdf6
nss-debuginfo-3.67.0-4.el7_9.x86_64.rpm SHA-256: 059ef6c7bc8ef57b8da061af993930f5375dae691df69b730ded4efed398f93a
nss-debuginfo-3.67.0-4.el7_9.x86_64.rpm SHA-256: 059ef6c7bc8ef57b8da061af993930f5375dae691df69b730ded4efed398f93a
nss-devel-3.67.0-4.el7_9.i686.rpm SHA-256: e0a546372de4987777cd49ec59b15d7518efb3c5bec8ae69e2a254f05f60a579
nss-devel-3.67.0-4.el7_9.x86_64.rpm SHA-256: c5756e1256d166c32107ae558c5444dadb308ee8ff270eb12c4da3e5af7a2bb3
nss-pkcs11-devel-3.67.0-4.el7_9.i686.rpm SHA-256: 97b42e48fa677450464abef511366093973efb2445d41f37bef149b9ffef1ebf
nss-pkcs11-devel-3.67.0-4.el7_9.x86_64.rpm SHA-256: 67a614b01984001e5e2101978b237ae61fc9a9923bde337365fe7a2f23f45250
nss-sysinit-3.67.0-4.el7_9.x86_64.rpm SHA-256: adfb9881bce69fb43dbeb07e9fb6ba3a3adfb3c40bca596d3adab2fe8913a00a
nss-tools-3.67.0-4.el7_9.x86_64.rpm SHA-256: 4d6ae0cacbcc3ff539cd660a3b2b5b86b8e2512a3671e4d601a3359d1ac7a887

Red Hat Enterprise Linux for Power, little endian 7

SRPM
nss-3.67.0-4.el7_9.src.rpm SHA-256: 4a1669dbddf0702a1934707727da7246b46c8c61d6ed8069597aa5707a0e6516
ppc64le
nss-3.67.0-4.el7_9.ppc64le.rpm SHA-256: 79a8753b108100d5771085cbaf8621b8c866c295c3226aa5bfa07e433b7e328a
nss-debuginfo-3.67.0-4.el7_9.ppc64le.rpm SHA-256: 62bff01ed4ad161690855d0330ecbf11ee68f97f24ebcfe42ee31fe2b0ca20f3
nss-debuginfo-3.67.0-4.el7_9.ppc64le.rpm SHA-256: 62bff01ed4ad161690855d0330ecbf11ee68f97f24ebcfe42ee31fe2b0ca20f3
nss-devel-3.67.0-4.el7_9.ppc64le.rpm SHA-256: 779a37c914ad0a8a5dd0d9204a09e75665857120fd8b804fdd7798494f1a7a61
nss-pkcs11-devel-3.67.0-4.el7_9.ppc64le.rpm SHA-256: 1b22473a95fee0cb5aa0940e53172d1440db5b2def574c9e4cf09f5e324a46d3
nss-sysinit-3.67.0-4.el7_9.ppc64le.rpm SHA-256: 14bc6924012f2af4561aef1b0fade6739fcf568fb923ce9ca58a0357eecb599a
nss-tools-3.67.0-4.el7_9.ppc64le.rpm SHA-256: 50ed0b33b088647d6d12c2bfe138102306c471f698197c84f7c9a845d8d1c60c

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Red Hat

Quick Links

  • Downloads
  • Subscriptions
  • Support Cases
  • Customer Service
  • Product Documentation

Help

  • Contact Us
  • Customer Portal FAQ
  • Log-in Assistance

Site Info

  • Trust Red Hat
  • Browser Support Policy
  • Accessibility
  • Awards and Recognition
  • Colophon

Related Sites

  • redhat.com
  • developers.redhat.com
  • connect.redhat.com
  • cloud.redhat.com

About

  • Red Hat Subscription Value
  • About Red Hat
  • Red Hat Jobs
Copyright © 2023 Red Hat, Inc.
  • Privacy Statement
  • Customer Portal Terms of Use
  • All Policies and Guidelines
Red Hat Summit
Twitter