libtasn1 -- denial of service parsing malicious DER certificates

2016-04-11T00:00:00
ID 1B0D2938-0766-11E6-94FA-002590263BF5
Type freebsd
Reporter FreeBSD
Modified 2016-04-11T00:00:00

Description

GNU Libtasn1 NEWS reports:

Fixes to avoid an infinite recursion when decoding without the ASN1_DECODE_FLAG_STRICT_DER flag. Reported by Pascal Cuoq.