Endpoint Vulnerability

Errors in mp_div and mp_exptmod cryptographic functions in NSS

Description

Security researcher Hanno B ck reported that calculations with mp_div and mp_exptmod in Network Security Services (NSS) can produce wrong results in some circumstances. These functions are used within NSS for a variety of cryptographic division functions, leading to potential cryptographic weaknesses.

Affected Products

Firefox

References

CVE-2016-1938,