A flaw was found in the way NSS handled CCS (ChangeCipherSpec) messages in TLS 1.3. This flaw allows a remote attacker to send multiple CCS messages, causing a denial of service for servers compiled with the NSS library. The highest threat from this vulnerability is to system availability. This flaw affects NSS versions before 3.58.
{ "availability": "No subscription required", "ubuntu_priority": "low", "binaries": [ { "libnss3-tools": "2:3.49.1-1ubuntu1.7", "libnss3-dbgsym": "2:3.49.1-1ubuntu1.7", "libnss3": "2:3.49.1-1ubuntu1.7", "libnss3-dev": "2:3.49.1-1ubuntu1.7", "libnss3-tools-dbgsym": "2:3.49.1-1ubuntu1.7" } ] }