CVE-2017-7502 Ubuntu Security Notification for Nss Vulnerability (USN-3336-1)

It was discovered that NSS incorrectly handled certain empty SSLv2 messages.

A remote attacker could possibly use this issue to cause NSS to crash, resulting in a denial of service.

Refer to Ubuntu advisory USN-3336-1 for affected packages and patching details, or update with your package manager.

Patch:
Following are links for downloading patches to fix the vulnerabilities:

USN-3336-1: 16.04 (Xenial) on src (libnss3)

USN-3336-1: 17.04 (zesty) on src (libnss3)

USN-3336-1: 16.10 (Yakkety) on src (libnss3)

USN-3336-1: 14.04 (Kylin) on src (libnss3)