From https://www.mozilla.org/en-US/security/advisories/mfsa2017-11/: CVE-2017-5462: DRBG flaw in NSS Impact moderate Description A flaw in DRBG number generation within the Network Security Services (NSS) library where the internal state V does not correctly carry bits over. The NSS library has been updated to fix this issue to address this issue and Firefox ESR 45.9 has been updated with NSS version 3.21.4.
Addressed in >=dev-libs/nss-3.29.5 and >=dev-libs/nss-3.30.1 Please follow bug 616032 for stabilization of dev-libs/nss-3.29.5
New GLSA Request filed.
This issue was resolved and addressed in GLSA 201705-04 at https://security.gentoo.org/glsa/201705-04 by GLSA coordinator Thomas Deutschmann (whissi).