Amazon Linux AMI : nss (ALAS-2014-424)
High Nessus Plugin ID 78367
SynopsisThe remote Amazon Linux AMI host is missing a security update.
DescriptionA flaw was found in the way NSS parsed ASN.1 (Abstract Syntax Notation One) input from certain RSA signatures. A remote attacker could use this flaw to forge RSA certificates by providing a specially crafted signature to an application using NSS.
SolutionRun 'yum update nss' to update your system.