CVE-2015-2721

Name	CVE-2015-2721
Description	Mozilla Network Security Services (NSS) before 3.19, as used in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, Thunderbird before 38.1, and other products, does not properly determine state transitions for the TLS state machine, which allows man-in-the-middle attackers to defeat cryptographic protection mechanisms by blocking messages, as demonstrated by removing a forward-secrecy property by blocking a ServerKeyExchange message, aka a "SMACK SKIP-TLS" issue.
Source	CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
References	DLA-315-1, DSA-3300-1, DSA-3324-1, DSA-3336-1

Vulnerable and fixed packages

The table below lists information on source packages.

Source Package	Release	Version	Status
nss (PTS)	bullseye	2:3.61-1+deb11u3	fixed
	bullseye (security)	2:3.61-1+deb11u4	fixed
	bookworm	2:3.87.1-1	fixed
	bookworm (security)	2:3.87.1-1+deb12u1	fixed
	trixie	2:3.105-2	fixed
	sid	2:3.106-1	fixed

The information below is based on the following data on fixed versions.

Package	Type	Release	Fixed Version	Urgency	Origin
icedove	source	squeeze	(unfixed)	end-of-life
icedove	source	wheezy	31.8.0-1~deb7u1		DSA-3324-1
icedove	source	jessie	31.8.0-1~deb8u1		DSA-3324-1
icedove	source	(unstable)	38.1.0-1
iceweasel	source	squeeze	(unfixed)	end-of-life
iceweasel	source	wheezy	31.8.0esr-1~deb7u1		DSA-3300-1
iceweasel	source	jessie	31.8.0esr-1~deb8u1		DSA-3300-1
iceweasel	source	(unstable)	38.1.0esr-1
nss	source	squeeze	3.12.8-1+squeeze12		DLA-315-1
nss	source	wheezy	2:3.14.5-1+deb7u5		DSA-3336-1
nss	source	jessie	2:3.17.2-1.1+deb8u1		DSA-3336-1
nss	source	(unstable)	2:3.19.1-1

Notes

NSS patch: https://hg.mozilla.org/projects/nss/rev/6b4770c76bc8
NSS testcase: https://hg.mozilla.org/projects/nss/rev/1865635f5df5
https://www.mozilla.org/en-US/security/advisories/mfsa2015-71/