Name | CVE-2010-3170 |
Description | Mozilla Firefox before 3.5.14 and 3.6.x before 3.6.11, Thunderbird before 3.0.9 and 3.1.x before 3.1.5, and SeaMonkey before 2.0.9 recognize a wildcard IP address in the subject's Common Name field of an X.509 certificate, which might allow man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority. |
Source | CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more) |
References | DSA-2123-1 |
The table below lists information on source packages.
Source Package | Release | Version | Status |
---|---|---|---|
kde4libs (PTS) | jessie, jessie (lts) | 4:4.14.2-5+deb8u3 | fixed |
stretch (lts), stretch | 4:4.14.26-2+deb9u1 | fixed | |
buster | 4:4.14.38-3 | fixed | |
nss (PTS) | jessie, jessie (lts) | 2:3.26-1+debu8u19 | fixed |
stretch (security) | 2:3.26.2-1.1+deb9u5 | fixed | |
stretch (lts), stretch | 2:3.26.2-1.1+deb9u8 | fixed | |
buster, buster (lts) | 2:3.42.1-1+deb10u9 | fixed | |
buster (security) | 2:3.42.1-1+deb10u8 | fixed | |
bullseye | 2:3.61-1+deb11u3 | fixed | |
bullseye (security) | 2:3.61-1+deb11u4 | fixed | |
bookworm | 2:3.87.1-1 | fixed | |
bookworm (security) | 2:3.87.1-1+deb12u1 | fixed | |
sid, trixie | 2:3.106-1 | fixed | |
qt4-x11 (PTS) | jessie, jessie (lts) | 4:4.8.6+git64-g5dc8b2b+dfsg-3+deb8u5 | fixed |
stretch (security) | 4:4.8.7+dfsg-11+deb9u3 | fixed | |
stretch (lts), stretch | 4:4.8.7+dfsg-11+deb9u4 | fixed | |
buster (security), buster, buster (lts) | 4:4.8.7+dfsg-18+deb10u2 | fixed |
The information below is based on the following data on fixed versions.
Package | Type | Release | Fixed Version | Urgency | Origin | Debian Bugs |
---|---|---|---|---|---|---|
kde4libs | source | squeeze | 4:4.4.5-2+squeeze2 | |||
kde4libs | source | (unstable) | 4:4.4.5-4 | low | ||
nss | source | lenny | 3.12.3.1-0lenny2 | DSA-2123-1 | ||
nss | source | (unstable) | 3.12.8-1 | |||
qt4-x11 | source | lenny | (not affected) | |||
qt4-x11 | source | squeeze | 4:4.6.3-4+squeeze1 | |||
qt4-x11 | source | (unstable) | 4:4.7.2-4 | low |
[lenny] - qt4-x11 <not-affected> (Vulnerable code not present)
[lenny] - kde4libs <no-dsa> (Minor issue)