CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
High
EPSS
Percentile
86.2%
Package : libtasn1-3
Version : 2.7-1+squeeze+3
CVE ID : CVE-2015-2806
Hanno Boeck discovered a stack-based buffer overflow in the
asn1_der_decoding function in Libtasn1, a library to manage ASN.1
structures. A remote attacker could take advantage of this flaw to cause
an application using the Libtasn1 library to crash, or potentially to
execute arbitrary code.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 7 | i386 | libtasn1-3-dbg | < 2.13-2+deb7u2 | libtasn1-3-dbg_2.13-2+deb7u2_i386.deb |
Debian | 7 | armel | libtasn1-3-bin | < 2.13-2+deb7u2 | libtasn1-3-bin_2.13-2+deb7u2_armel.deb |
Debian | 7 | s390x | libtasn1-3-dev | < 2.13-2+deb7u2 | libtasn1-3-dev_2.13-2+deb7u2_s390x.deb |
Debian | 7 | i386 | libtasn1-3-dev | < 2.13-2+deb7u2 | libtasn1-3-dev_2.13-2+deb7u2_i386.deb |
Debian | 7 | armel | libtasn1-3 | < 2.13-2+deb7u2 | libtasn1-3_2.13-2+deb7u2_armel.deb |
Debian | 7 | powerpc | libtasn1-3-bin | < 2.13-2+deb7u2 | libtasn1-3-bin_2.13-2+deb7u2_powerpc.deb |
Debian | 7 | s390 | libtasn1-3-dbg | < 2.13-2+deb7u2 | libtasn1-3-dbg_2.13-2+deb7u2_s390.deb |
Debian | 6 | i386 | libtasn1-3 | < 2.7-1+squeeze+3 | libtasn1-3_2.7-1+squeeze+3_i386.deb |
Debian | 7 | i386 | libtasn1-3-bin | < 2.13-2+deb7u2 | libtasn1-3-bin_2.13-2+deb7u2_i386.deb |
Debian | 7 | mips | libtasn1-3-dev | < 2.13-2+deb7u2 | libtasn1-3-dev_2.13-2+deb7u2_mips.deb |