BigSig: Vulnerability in Mozilla NSS Could Allow Code Execution when Handling Certificates
A cryptographic library set NSS Mozilla (Network Security Services) has been identified in the critical vulnerability (( CVE-2021-43527 CVE-2021-43527)) that could lead to malicious code execution when processing DSA or RSA-PSS digital signatures specified using the DER ( Distinguished Encoding Rules). The issue codenamed BigSig has been fixed in NSS 3.73 and NSS ESR 3.68.1. […]
The post BigSig: Vulnerability in Mozilla NSS Could Allow Code Execution when Handling Certificates appeared first on Linux Today.
Read More