NSS is vulnerable to the Minerva attack https://minerva.crocs.fi.muni.cz/ The CVE has been assigned by upstream. Upstream bug: https://bugzilla.mozilla.org/show_bug.cgi?id=1853908
Created firefox tracking bugs for this issue: Affects: fedora-38 [bug 2257838] Affects: fedora-39 [bug 2257839]
Created nss tracking bugs for this issue: Affects: fedora-all [bug 2257840]
Created thunderbird tracking bugs for this issue: Affects: fedora-38 [bug 2257902] Affects: fedora-39 [bug 2257903]
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.8 Extended Update Support Via RHSA-2024:0785 https://access.redhat.com/errata/RHSA-2024:0785
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2024:0786 https://access.redhat.com/errata/RHSA-2024:0786
This issue has been addressed in the following products: Red Hat Enterprise Linux 9.2 Extended Update Support Via RHSA-2024:0791 https://access.redhat.com/errata/RHSA-2024:0791
This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2024:0790 https://access.redhat.com/errata/RHSA-2024:0790
This issue has been addressed in the following products: RHEL-8 based Middleware Containers Via RHSA-2024:1686 https://access.redhat.com/errata/RHSA-2024:1686