Canonical has published details in a security notice about an NSS vulnerability in Ubuntu 14.10, Ubuntu 14.04 LTS, Ubuntu 12.04 LTS, and Ubuntu 10.04 LTS operating systems. This problem has been corrected and an update has been issued.
A small update has been released for NSS (Network Security Service library), which could have been made to expose sensitive information over the network.
"It was discovered that NSS incorrectly handled certain ASN.1 lengths. A remote attacker could possibly us... (read more)