logo
DATABASE RESOURCES PRICING ABOUT US

libtasn1-3 - integer overflow

Description

Matthew Hall discovered that many callers of the asn1\_get\_length\_der function did not check the result against the overall buffer length before processing it further. This could result in out-of-bounds memory accesses and application crashes. Applications using GNUTLS are exposed to this issue. For the stable distribution (squeeze), this problem has been fixed in version 2.7-1+squeeze+1. For the unstable distribution (sid), this problem has been fixed in version 2.12-1. We recommend that you upgrade your libtasn1-3 packages.


Affected Software


CPE Name Name Version
libtasn1-3 2.7-1

Related