Amazon Linux AMI : nss-util (ALAS-2014-422)
High Nessus Plugin ID 78365
SynopsisThe remote Amazon Linux AMI host is missing a security update.
DescriptionA flaw was found in the way NSS parsed ASN.1 (Abstract Syntax Notation One) input from certain RSA signatures. A remote attacker could use this flaw to forge RSA certificates by providing a specially crafted signature to an application using NSS.
SolutionRun 'yum update nss-util' to update your system.