Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
archlinuxArch LinuxASA-201505-5
HistoryMay 08, 2015 - 12:00 a.m.

libtasn1: arbitrary code execution

2015-05-0800:00:00
Arch Linux
lists.archlinux.org
16

0.924 High

EPSS

Percentile

99.0%

JSON

A heap-based buffer overflow flaw was found in the way the libtasn1
library decoded certain DER-encoded input. A specially crafted,
DER-encoded input could cause an application using libtasn1 to perform
an invalid read, causing the application to crash or, possibly, execute
arbitrary code.
The heap overflow happens in the function _asn1_extract_der_octet() that
is called during decoding of DER-encoded input.

OSVersionArchitecturePackageVersionFilename
anyanyanylibtasn1< 4.5-1UNKNOWN

Related

openvas 14
veracode 2
cvelist 1
ubuntu 1
checkpoint_advisories 1
securityvulns 2
ubuntucve 1
cve 1
nessus 18
debian 2
mageia 1
prion 1
nvd 1
debiancve 1
fedora 1
redhat 1
ibm 4
centos 1
gentoo 1
oraclelinux 1
suse 2
openvas
openvas
Debian Security Advisory DSA 3256-1 (libtasn1-6 - security update)
2015-05-10 00:00:00
Ubuntu: Security Advisory (USN-2604-1)
2015-05-12 00:00:00
Mageia: Security Advisory (MGASA-2015-0200)
2022-01-28 00:00:00
veracode
veracode
Out-Of-Bounds Read
2018-08-08 03:02:05
Denial Of Service (DoS)
2019-05-02 06:44:46
cvelist
cvelist
CVE-2015-3622
2015-05-12 19:00:00
ubuntu
ubuntu
Libtasn1 vulnerability
2015-05-11 00:00:00
checkpoint_advisories
checkpoint_advisories
GnuTLS libtasn1 _asn1_extract_der_octet Memory Access Error (CVE-2015-3622)
2015-07-16 00:00:00
securityvulns
securityvulns
libtasn1 buffer overflow
2015-05-10 00:00:00
[ MDVSA-2015:232 ] libtasn1
2015-05-10 00:00:00
ubuntucve
ubuntucve
CVE-2015-3622
2015-05-01 00:00:00
cve
cve
CVE-2015-3622
2015-05-12 19:59:24
nessus
nessus
openSUSE Security Update : gnutls (openSUSE-2015-542)
2015-08-13 00:00:00
Ubuntu 14.04 LTS : Libtasn1 vulnerability (USN-2604-1)
2015-05-12 00:00:00
Debian DSA-3256-1 : libtasn1-6 - security update
2015-05-11 00:00:00
debian
debian
[SECURITY] [DSA 3256-1] libtasn1-6 security update
2015-05-10 17:53:37
[SECURITY] [DSA 3256-1] libtasn1-6 security update
2015-05-10 17:53:37
mageia
mageia
Updated libtasn1 packages fix CVE-2015-3622
2015-05-06 20:44:06
prion
prion
Design/Logic Flaw
2015-05-12 19:59:00
nvd
nvd
CVE-2015-3622
2015-05-12 19:59:24
debiancve
debiancve
CVE-2015-3622
2015-05-12 19:59:24
fedora
fedora
[SECURITY] Fedora 21 Update: libtasn1-4.5-1.fc21
2015-05-19 16:20:56
redhat
redhat
(RHSA-2017:1860) Moderate: libtasn1 security, bug fix, and enhancement update
2017-08-01 05:55:26
ibm
ibm
Security Bulletin: IBM Security Access Manager appliances are affected by vulnerabilities in libtasn1 (CVE-2015-2806, CVE-2015-3622)
2018-06-16 22:03:36
Security Bulletin: IBM QRadar Network Security is affected by vulnerabilities in libtasn1 (CVE-2015-3622, CVE-2015-2806)
2018-06-16 22:02:07
Security Bulletin: Vulnerabilities in libtasn1 affect PowerKVM
2018-06-18 01:37:31
centos
centos
libtasn1 security update
2017-08-24 01:39:20
gentoo
gentoo
libtasn1: Multiple vulnerabilities
2015-09-24 00:00:00
oraclelinux
oraclelinux
libtasn1 security, bug fix, and enhancement update
2017-08-07 00:00:00
suse
suse
Security update for SLES 12 Docker image (important)
2017-10-11 03:06:53
Security update for SLES 12-SP1 Docker image (important)
2017-10-11 03:07:32

0.924 High

EPSS

Percentile

99.0%

JSON
Related for ASA-201505-5
openvas14veracode2cvelist1ubuntu1checkpoint_advisories1securityvulns2ubuntucve1cve1nessus18debian2mageia1prion1nvd1debiancve1fedora1redhat1ibm4centos1gentoo1oraclelinux1suse2