Univention Bugzilla – Bug 30634
nss: Multiple issues (3.1)
Last modified: 2019-04-11 19:25:14 CEST
"Lucky 13" attack on TLS (CVE-2013-0169, CVE-2013-1620)
Buffer overflow in parsing the cipher list (CVE-2013-5605) Incomplete rejection of invalid certificates (CVE-2013-5606) Denial of service in certificate parsing (CVE-2013-1741)
Information disclosure in SSL handshake (CVE-2013-1740)
Incorrect wildcard parsing in internationalised domain names (CVE-2014-1492)
The maintenance with bug and security fixes for UCS 3.1-x has ended on 31st of May 2014. The maintenance of the UCS 3.x major series is continued by UCS 3.2-x that is supplied with bug and security fixes. Customers still on UCS 3.1-x are encouraged to update to UCS 3.2. Please contact your partner or Univention for any questions.