Back to bug 1877557
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Pedro Sampaio | 2020-09-09 20:25:01 UTC | Depends On | 1877558 | |
| Pedro Sampaio | 2020-09-09 20:25:10 UTC | Blocks | 1877559 | |
| Eric Christensen | 2020-09-10 14:35:22 UTC | Doc Text | A flaw was found in Mozilla nss. A raccoon attack exploits a flaw in the TLS specification which can lead to an attacker being able to compute the pre-master secret in connections which have used a Diffie-Hellman (DH) based ciphersuite. In such a case this would result in the attacker being able to eavesdrop on all encrypted communications sent over that TLS connection. The highest threat from this vulnerability is to data confidentiality. | |
| Yasuhiro Ozone | 2020-09-11 07:07:54 UTC | CC | yozone | |
| Todd Cullum | 2020-09-14 22:22:41 UTC | Depends On | 1878921, 1878922 | |
| Florencio Cano | 2020-09-16 05:33:21 UTC | Depends On | 1879367, 1879366 | |
| Kent Aycoth | 2020-11-03 17:16:17 UTC | CC | cmoore, kaycoth | |
| Huzaifa S. Sidhpurwala | 2020-12-24 10:19:53 UTC | Depends On | 1910629 | |
| Daniel Chong | 2021-01-20 15:26:36 UTC | CC | dchong | |
| sdarade | 2021-02-02 07:57:42 UTC | CC | sdarade | |
| Bob Relyea | 2021-02-22 17:09:30 UTC | CC | rrelyea | |
| Todd Cullum | 2021-11-02 17:45:55 UTC | Status | NEW | CLOSED |
| Resolution | --- | WONTFIX | ||
| Last Closed | 2021-11-02 17:45:55 UTC | |||
| TEJ RATHI | 2023-07-14 07:29:03 UTC | Doc Text | A flaw was found in Mozilla nss. A raccoon attack exploits a flaw in the TLS specification which can lead to an attacker being able to compute the pre-master secret in connections which have used a Diffie-Hellman (DH) based ciphersuite. In such a case this would result in the attacker being able to eavesdrop on all encrypted communications sent over that TLS connection. The highest threat from this vulnerability is to data confidentiality. | A flaw was found in Mozilla nss. A raccoon attack exploits a flaw in the TLS specification which can lead to an attacker being able to compute the pre-master secret in connections which have used a Diffie-Hellman(DH) based ciphersuite. In such a case this would result in the attacker being able to eavesdrop on all encrypted communications sent over that TLS connection. The highest threat from this vulnerability is to data confidentiality. |
Back to bug 1877557