CVE-2017-5462: DRBG flaw in NSS
A flaw in DRBG number generation within the Network Security
Services (NSS) library where the internal state V does not correctly carry
bits over. The NSS library has been updated to fix this issue to address
this issue and Firefox ESR 45.9 has been updated with NSS version 3.21.4.
Addressed in >=dev-libs/nss-3.29.5 and >=dev-libs/nss-3.30.1
Please follow bug 616032 for stabilization of dev-libs/nss-3.29.5
New GLSA Request filed.
This issue was resolved and addressed in
GLSA 201705-04 at https://security.gentoo.org/glsa/201705-04
by GLSA coordinator Thomas Deutschmann (whissi).