Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 604916 (CVE-2016-5285, CVE-2016-8635) - <dev-libs/nss-3.28: multiple vulnerabilities (CVE-2016-{5285,8635,9074})
Summary: <dev-libs/nss-3.28: multiple vulnerabilities (CVE-2016-{5285,8635,9074})
Alias: CVE-2016-5285, CVE-2016-8635
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal major (vote)
Assignee: Gentoo Security
Whiteboard: A2 [glsa cve cleanup]
Depends on: 603622
Blocks: CVE-2015-2721, CVE-2015-4000 CVE-2015-7575, CVE-2016-1938 593070 605430
  Show dependency tree
Reported: 2017-01-07 12:11 UTC by Thomas Deutschmann (RETIRED)
Modified: 2017-01-19 19:22 UTC (History)
2 users (show)

See Also:
Package list:
=dev-libs/nss-3.28.1 =dev-libs/nspr-4.13.1
Runtime testing required: ---
stable-bot: sanity-check+


Note You need to log in before you can comment on or make changes to this bug.
Description Thomas Deutschmann (RETIRED) gentoo-dev 2017-01-07 12:11:30 UTC

It was discovered that NSS incorrectly handled certain invalid
Diffie-Hellman keys. A remote attacker could possibly use this flaw to
cause NSS to crash, resulting in a denial of service.

Hubert Kario discovered that NSS incorrectly handled Diffie Hellman client
key exchanges. A remote attacker could possibly use this flaw to perform a
small subgroup confinement attack and recover private keys.

Franziskus Kiefer discovered that NSS incorrectly mitigated certain timing
side-channel attacks. A remote attacker could possibly use this flaw to
recover private keys. (CVE-2016-9074)
Comment 1 Thomas Deutschmann (RETIRED) gentoo-dev 2017-01-07 12:20:57 UTC

Upstream fixed this issue via (see upstream's bug from commit message).

This changeset is present in 3.21.3 release:

$ hg log -r "45c047d18ac4:: and tag()"
changeset:   12729:ee067d70a228
branch:      NSS_3_21_BRANCH
tag:         NSS_3_21_3_RTM
parent:      12726:a9cb2d41c54f
user:        Kai Engert <>
date:        Mon Oct 17 20:24:18 2016 +0200
summary:     set version numbers to 3.21.3 release

which never materialized according to

While one would assume the changes are present in following versions like 3.22, 3.23 ... branch as well I was unable to locate the fixed code in our currently stable =dev-libs/nss-3.22.2 and =dev-libs/nss-3.23 version.

In 3.27 upstream worked on TLS 1.3 support and has rewritten affected function. However, the change (=to make sure that "rv" is set to "SECFailure") is present in in =dev-libs/nss-3.27.2.


Upstream fix:

Present in currently p.masked =dev-libs/nss-3.28 only.


Upstream fix:

Present in currently p.masked =dev-libs/nss-3.28 only.
Comment 2 Jory A. Pratt gentoo-dev 2017-01-08 21:45:09 UTC
Please bring in archs we are going with 3.28.1 thank you.
Comment 3 Thomas Deutschmann (RETIRED) gentoo-dev 2017-01-08 21:47:28 UTC
@ Maintainer(s): Thank you for the bumps!

@ Arches,

please test and mark stable: =dev-libs/nss-3.28.1
Comment 4 Jory A. Pratt gentoo-dev 2017-01-09 02:12:55 UTC
(In reply to Thomas Deutschmann from comment #3)
> @ Maintainer(s): Thank you for the bumps!
> @ Arches,
> please test and mark stable: =dev-libs/nss-3.28.1

Please also mark stable: =dev-libs/nspr-4.13.1
Comment 5 Agostino Sarubbo gentoo-dev 2017-01-10 14:57:00 UTC
amd64 stable
Comment 6 Agostino Sarubbo gentoo-dev 2017-01-10 15:26:26 UTC
x86 stable
Comment 7 Agostino Sarubbo gentoo-dev 2017-01-11 10:54:16 UTC
sparc stable
Comment 8 Markus Meier gentoo-dev 2017-01-13 17:02:18 UTC
arm stable
Comment 9 Agostino Sarubbo gentoo-dev 2017-01-15 16:07:05 UTC
ppc stable
Comment 10 Jeroen Roovers (RETIRED) gentoo-dev 2017-01-15 20:18:15 UTC
Stable for HPPA.
Comment 11 Tobias Klausmann (RETIRED) gentoo-dev 2017-01-15 22:20:57 UTC
Stable on alpha.
Comment 12 James Le Cuirot gentoo-dev 2017-01-16 23:02:38 UTC
I need this stabilised on ppc64 in order to fix bug #605430. icedtea-bin seems to encounter some breakage when built against 3.27 but run against 3.28.
Comment 13 Agostino Sarubbo gentoo-dev 2017-01-17 14:41:55 UTC
ia64 stable
Comment 14 Agostino Sarubbo gentoo-dev 2017-01-18 10:06:20 UTC
ppc64 stable.

Maintainer(s), please cleanup.
Security, please add it to the existing request, or file a new one.
Comment 15 Aaron Bauman (RETIRED) gentoo-dev 2017-01-19 08:23:34 UTC
GLSA request filed.
Comment 16 GLSAMaker/CVETool Bot gentoo-dev 2017-01-19 19:22:11 UTC
This issue was resolved and addressed in
 GLSA 201701-46 at
by GLSA coordinator Thomas Deutschmann (whissi).