Lucene search
UbuntuUSN-2559-1HistoryApr 08, 2015 - 12:00 a.m.
Libtasn1 vulnerability
2015-04-0800:00:00
ubuntu.com
33
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
6.9 Medium
AI Score
Confidence
High
0.014 Low
EPSS
Percentile
86.2%
Releases
- Ubuntu 14.10
- Ubuntu 14.04 ESM
- Ubuntu 12.04
- Ubuntu 10.04
Packages
- libtasn1-3 - Library to manage ASN.1 structures
- libtasn1-6 - Library to manage ASN.1 structures
Details
Hanno Böck discovered that Libtasn1 incorrectly handled certain ASN.1 data.
A remote attacker could possibly exploit this with specially crafted ASN.1
data and cause applications using Libtasn1 to crash, resulting in a denial
of service, or possibly execute arbitrary code.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 14.10 | noarch | libtasn1-6 | < 4.0-2ubuntu0.1 | UNKNOWN |
| Ubuntu | 14.10 | noarch | libtasn1-6-dbg | < 4.0-2ubuntu0.1 | UNKNOWN |
| Ubuntu | 14.10 | noarch | libtasn1-6-dev | < 4.0-2ubuntu0.1 | UNKNOWN |
| Ubuntu | 14.10 | noarch | libtasn1-bin | < 4.0-2ubuntu0.1 | UNKNOWN |
| Ubuntu | 14.04 | noarch | libtasn1-6 | < 3.4-3ubuntu0.2 | UNKNOWN |
| Ubuntu | 14.04 | noarch | libtasn1-6-dbg | < 3.4-3ubuntu0.2 | UNKNOWN |
| Ubuntu | 14.04 | noarch | libtasn1-6-dev | < 3.4-3ubuntu0.2 | UNKNOWN |
| Ubuntu | 14.04 | noarch | libtasn1-bin | < 3.4-3ubuntu0.2 | UNKNOWN |
| Ubuntu | 12.04 | noarch | libtasn1-3 | < 2.10-1ubuntu1.3 | UNKNOWN |
| Ubuntu | 12.04 | noarch | libtasn1-3-bin | < 2.10-1ubuntu1.3 | UNKNOWN |
References
Related
nessus
nessus
Mandriva Linux Security Advisory : libtasn1 (MDVSA-2015:193)
2015-04-07 00:00:00
Debian DLA-195-1 : libtasn1-3 security update
2015-04-13 00:00:00
openvas
openvas
Fedora Update for mingw-libtasn1 FEDORA-2015-5308
2015-07-07 00:00:00
Ubuntu: Security Advisory (USN-2559-1)
2015-04-09 00:00:00
Fedora Update for mingw-gnutls FEDORA-2015-5308
2015-07-07 00:00:00
fedora
fedora
[SECURITY] Fedora 22 Update: libtasn1-4.4-1.fc22
2015-04-21 18:57:54
[SECURITY] Fedora 21 Update: mingw-gnutls-3.3.14-1.fc21
2015-04-21 19:16:16
[SECURITY] Fedora 21 Update: mingw-libtasn1-4.4-1.fc21
2015-04-21 19:16:16
debian
debian
[SECURITY] [DSA 3220-1] libtasn1-3 security update
2015-04-11 21:19:14
[SECURITY] [DSA 3220-1] libtasn1-3 security update
2015-04-11 21:19:14
[SECURITY] [DLA 195-1] libtasn1-3 security update
2015-04-12 17:37:44
veracode
veracode
Denial Of Service (DoS)
2018-05-22 06:57:51
Denial Of Service (DoS)
2019-01-15 09:18:07
cve
cve
CVE-2015-2806
2015-04-10 15:00:05
freebsd
freebsd
libtasn1 -- stack-based buffer overflow in asn1_der_decoding
2015-04-11 00:00:00
mageia
mageia
Updated libtasn1 packages fix CVE-2015-2806
2015-04-03 16:11:23
prion
prion
Stack overflow
2015-04-10 15:00:00
osv
osv
libtasn1-3 - security update
2015-04-11 00:00:00
libtasn1-3 - security update
2015-04-12 00:00:00
cvelist
cvelist
CVE-2015-2806
2015-04-10 14:00:00
nvd
nvd
CVE-2015-2806
2015-04-10 15:00:05
debiancve
debiancve
CVE-2015-2806
2015-04-10 15:00:05
securityvulns
securityvulns
[USN-2559-1] Libtasn1 vulnerability
2015-04-08 00:00:00
libtasn1 memory corruption
2015-04-08 00:00:00
archlinux
archlinux
libtasn1: stack overflow
2015-04-03 00:00:00
ubuntucve
ubuntucve
CVE-2015-2806
2015-04-01 00:00:00
ibm
ibm
redhat
redhat
centos
centos
libtasn1 security update
2017-08-24 01:39:20
gentoo
gentoo
libtasn1: Multiple vulnerabilities
2015-09-24 00:00:00
oraclelinux
oraclelinux
libtasn1 security, bug fix, and enhancement update
2017-08-07 00:00:00
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
6.9 Medium
AI Score
Confidence
High
0.014 Low
EPSS
Percentile
86.2%
Related for USN-2559-1