Endpoint Vulnerability

Out-of-bounds array read in CERT_DecodeCertPackage

Description

Mozilla community member Ambroz Bizjak reported an out-of-bounds array read in the CERT_DecodeCertPackage function of the Network Security Services (NSS) libary when decoding a certificate. When this occurs, it will lead to memory corruption and a non-exploitable crash.

Affected Products

SeaMonkey

References

CVE-2013-0791,