ELA-1231-1

Name	ELA-1231-1
Description	nss - security update
References	CVE-2024-6602, CVE-2024-6609

Vulnerable and fixed packages

The table below lists information on source packages.

Source Package	Release	Version	Status
nss (PTS)	jessie, jessie (lts)	2:3.26-1+debu8u19	fixed
	stretch (security)	2:3.26.2-1.1+deb9u5	vulnerable
	stretch (lts), stretch	2:3.26.2-1.1+deb9u8	fixed
	buster, buster (lts)	2:3.42.1-1+deb10u9	fixed
	buster (security)	2:3.42.1-1+deb10u8	vulnerable

The information below is based on the following data on fixed versions.

Package	Type	Release	Fixed Version	Urgency	Origin	Debian Bugs
nss	source	jessie	2:3.26-1+debu8u19
nss	source	stretch	2:3.26.2-1.1+deb9u8
nss	source	buster	2:3.42.1-1+deb10u9