How I resolve the CVE-2021-43527 on ubuntu 20.04

Anan

6/2/23, 5:57 AM

I am using ubuntu version "20.04.3 LTS (Focal Fossa)" where facing CVE-2021-43527 (NSS) vulnerability, no public network on the VM. In the link its mentioned that this vulnerability fixed in 2:3.49.1-1ubuntu1.6. Please help me how can I upgrade this version or how to resolve mentioned vulnerability from my VM.

0 + 0

20.04

Archisman Panigrahi

6/2/23, 6:07 AM

Connect to internet, and run the commands `sudo apt update` and `sudo apt dist-upgrade`. That should apply all the updates.

muru

6/2/23, 6:13 AM

Or host a mirror or proxy in your internal network which can be accessed by your VM.

muru

6/2/23, 6:14 AM

Does this answer your question? [Updating/patching an airgapped Ubuntu server](https://askubuntu.com/questions/895732/updating-patching-an-airgapped-ubuntu-server) Or https://askubuntu.com/questions/1015264/how-can-i-update-an-offline-ubuntu-machine-no-internet-at-all

guiverc

6/2/23, 6:19 AM

You've provided no link (but make reference to one); I gather it's https://ubuntu.com/security/CVE-2021-43527

mchid

6/2/23, 9:00 PM

Version 2:3.49.1-1ubuntu1.6 is the source package nss and not the package you would install. The following packages are built from the nss source: `libnss3 libnss3-dev libnss3-tools`. If the machine doesn't have access to the internet, you can download the packages (deb files) [from here](https://packages.ubuntu.com/search?suite=focal&section=all&arch=any&keywords=libnss&searchon=names) and install them using `sudo apt install ./packagename.deb` in the same directory as the downloaded pacakge.

mchid

6/2/23, 9:03 PM

There are other security updates listed on the same page. Look for any packages that show "security" in the description if they are installed on your computer. Of course, simply downloading the packages may not work as you may encounter dependency issues. However, these are mostly libs so keep your fingers crossed there are no problems and hopefully it will work. If not, you can always download the necessary dependencies and install those and then try again.

Anan

6/4/23, 5:55 AM

Thanks mchid, I have downloaded the nss_3.49.1.orig(1).tar file from your mentioned link. But can you help me how I Install this tar package.

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: How I resolve the CVE-2021-43527 on ubuntu 20.04

TH: ฉันจะแก้ไข CVE-2021-43527 บน Ubuntu 20.04 ได้อย่างไร

RO: Cum rezolv CVE-2021-43527 pe ubuntu 20.04

RU: Как решить CVE-2021-43527 в Ubuntu 20.04

VI: Cách tôi giải quyết CVE-2021-43527 trên Ubuntu 20.04

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.