VDB
GCVE-110-MAGEIA-2014-293
GCVE-110-MAGEIA-2014-293
Advisory Published
A race condition was found in the way NSS verified certain certificates.
A remote attacker could use this flaw to crash an application using NSS or,
possibly, execute arbitrary code with the privileges of the user running
that application (CVE-2014-1544).
Several flaws were found in the processing of malformed web content. A web
page containing malicious content could cause Firefox or Thunderbird to crash
or, potentially, execute arbitrary code with the privileges of the user
running it (CVE-2014-1547, CVE-2014-1555, CVE-2014-1556, CVE-2014-1557).
The rootcerts and nss packages have been updated to NSS 3.16.3, and the
firefox and thunderbird packages have been updated to version 24.7.0, fixing
these issues.
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | rootcerts | 0 (affected), 20140703.00-1.mga4 (unaffected) | — |
| Mageia | rootcerts | 0 (affected), 20140703.00-1.mga3 (unaffected) | — |
| Mageia | firefox | 0 (affected), 24.7.0-1.mga3 (unaffected) | — |
| Mageia | thunderbird | 0 (affected), 24.7.0-1.mga4 (unaffected) | — |
| Mageia | firefox-l10n | 0 (affected), 24.7.0-1.mga4 (unaffected) | — |
| Mageia | thunderbird-l10n | 0 (affected), 24.7.0-1.mga4 (unaffected) | — |
| Mageia | thunderbird-l10n | 24.7.0-1.mga3 (unaffected), 0 (affected) | — |
| Mageia | firefox | 0 (affected), 24.7.0-1.mga4 (unaffected) | — |
| Mageia | thunderbird | 0 (affected), 24.7.0-1.mga3 (unaffected) | — |
| Mageia | nss | 3.16.3-1.mga3 (unaffected), 0 (affected) | — |
| Mageia | nss | 0 (affected), 3.16.3-1.mga4 (unaffected) | — |
| Mageia | firefox-l10n | 0 (affected), 24.7.0-1.mga3 (unaffected) | — |
References
Browse GCVE Records
73,280 records in the GCVE database · Updated July 17, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.