NSS Vulnerability Fixed for Ubuntu 12.10

view story

http://news.softpedia.com – On March 14, Canonical published in a security notice details about a NSS vulnerability for its Ubuntu 12.10, Ubuntu 12.04 LTS, Ubuntu 11.10, and Ubuntu 10.04 LTS operating systems. According to Canonical, NSS could be made to expose sensitive information over the network. Nadhem Alfardan and Kenny Paterson discovered that the TLS protocol as used in NSS was vulnerable to a timing side-channel attack known as the "Lucky Thirteen" issue. A remote attacker could use thi... (read more) (IT news)