Lucene search
K

21 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2016-4008

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The asn1extractderoctet function in lib/decoding.c in GNU Libtasn1 before 4.8, when used without the ASN1DECODEFLAGSTRICTDER flag, allows remote attackers to...

5.9CVSS6.3AI score0.29572EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.27 views

RHEL 6 : libtasn1 (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libtasn1: Stack-based buffer overflow in asn1findnode CVE-2017-6891 - The asn1extractderoctet function in...

7.2AI score0.29572EPSS
Exploits2References4
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.18 views

Mageia: Security Advisory (MGASA-2016-0170)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS6.2AI score0.29572EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.11 views

SUSE: Security Advisory (SUSE-SU-2016:1600-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS6.5AI score0.33094EPSS
Exploits1References6
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.15 views

SUSE: Security Advisory (SUSE-SU-2016:1601-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS6.5AI score0.33094EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2017/03/28 12:0 a.m.34 views

GLSA-201703-05 : GNU Libtasn1: Denial of Service

The remote host is affected by the vulnerability described in GLSA-201703-05 GNU Libtasn1: Denial of Service Libtasn1 does not correctly handle certain malformed DER certificates. Impact : A remote attacker could entice a user or automated system to process a specially crafted certificate using...

5.9CVSS6.5AI score0.29572EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2016/08/29 12:0 a.m.26 views

SUSE SLED12 / SLES12 Security Update : libtasn1 (SUSE-SU-2016:1601-1)

This update for libtasn1 fixes the following issues : - Malformed asn1 definitions could have caused a segmentation fault in the asn1 definition parser bsc961491 - CVE-2015-3622: Fixed invalid read in octet string decoding bsc929414 - CVE-2016-4008: Fixed infinite loop while parsing DER...

5.9CVSS6.6AI score0.33094EPSS
Exploits1References8
OSV
OSV
added 2016/06/16 1:32 p.m.7 views

SUSE-SU-2016:1600-1 Security update for libtasn1

This update for libtasn1 fixes the following issues: - Malformed asn1 definitions could have caused a segmentation fault in the asn1 definition parser bsc961491 - CVE-2015-3622: Fixed invalid read in octet string decoding bsc929414 - CVE-2016-4008: Fixed infinite loop while parsing DER certificat...

5.9CVSS5.9AI score0.33094EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2016/06/15 12:0 a.m.15 views

openSUSE Security Update : libtasn1 (openSUSE-2016-716)

This update for libtasn1 fixes the following issues : - Malformed asn1 definitions could have caused a segmentation fault in the asn1 definition parser bsc961491 - CVE-2015-3622: Fixed invalid read in octet string decoding bsc929414 - CVE-2016-4008: Fixed infinite loop while parsing DER...

5.9CVSS6.5AI score0.33094EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2016/05/31 12:0 a.m.24 views

Debian DLA-495-1 : libtasn1-3 security update

CVE-2016-4008: infinite loop while parsing DER certificates The asn1extractderoctet function in lib/decoding.c in GNU Libtasn1 before 4.8, when used without the ASN1DECODEFLAGSTRICTDER flag, allows remote attackers to cause a denial of service infinite recursion via a crafted certificate. For...

5.9CVSS6.5AI score0.29572EPSS
Exploits0References3
Debian
Debian
added 2016/05/30 8:3 p.m.26 views

[SECURITY] [DLA 495-1] libtasn1-3 security update

Package : libtasn1-3 Version : 2.13-2+deb7u3 CVE ID : CVE-2016-4008 CVE-2016-4008: infinite loop while parsing DER certificates The asn1extractderoctet function in lib/decoding.c in GNU Libtasn1 before 4.8, when used without the ASN1DECODEFLAGSTRICTDER flag, allows remote attackers to cause a...

5.9CVSS6.2AI score0.29572EPSS
Exploits0
OSV
OSV
added 2016/05/30 12:0 a.m.28 views

DLA-495-1 libtasn1-3 - security update

Bulletin has no description...

5.9CVSS5.9AI score0.29572EPSS
Exploits0
Mageia
Mageia
added 2016/05/11 7:27 p.m.33 views

Updated libtasn1 package fixes security vulnerability

Updated libtasn1 packages fix security vulnerability: Pascal Cuoq and Miod Vallat discovered that Libtasn1 incorrectly handled certain malformed DER certificates. A remote attacker could possibly use this issue to cause applications using Libtasn1 to hang, resulting in a denial of service...

5.9CVSS2.4AI score0.29572EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2016/05/06 12:0 a.m.24 views

Debian DSA-3568-1 : libtasn1-6 - security update

Pascal Cuoq and Miod Vallat discovered that Libtasn1, a library to manage ASN.1 structures, does not correctly handle certain malformed DER certificates. A remote attacker can take advantage of this flaw to cause an application using the Libtasn1 library to hang, resulting in a denial of service...

5.9CVSS6.5AI score0.29572EPSS
Exploits0References3
NVD
NVD
added 2016/05/05 6:59 p.m.18 views

CVE-2016-4008

The asn1extractderoctet function in lib/decoding.c in GNU Libtasn1 before 4.8, when used without the ASN1DECODEFLAGSTRICTDER flag, allows remote attackers to cause a denial of service infinite recursion via a crafted certificate...

5.9CVSS5.5AI score0.29572EPSS
Exploits0References13
OSV
OSV
added 2016/05/05 6:59 p.m.6 views

CVE-2016-4008

The asn1extractderoctet function in lib/decoding.c in GNU Libtasn1 before 4.8, when used without the ASN1DECODEFLAGSTRICTDER flag, allows remote attackers to cause a denial of service infinite recursion via a crafted certificate...

5.9CVSS5.5AI score
Exploits0References13
CVE
CVE
added 2016/05/05 6:0 p.m.113 views

CVE-2016-4008

CVE-2016-4008 affects GNU Libtasn1: the _asn1_extract_der_octet function in lib/decoding.c can cause a denial of service (infinite recursion) when processing certain malformed DER certificates if used without ASN1_DECODE_FLAG_STRICT_DER. The issue was fixed in libtasn1 4.8; advisories across dist...

5.9CVSS5.4AI score0.29572EPSS
Exploits0References13Affected Software1
Debian
Debian
added 2016/05/05 6:42 a.m.27 views

[SECURITY] [DSA 3568-1] libtasn1-6 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3568-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso May 05, 2016 https://www.debian.org/security/faq -...

4.3CVSS2.5AI score0.29572EPSS
Exploits0
OpenVAS
OpenVAS
added 2016/04/28 12:0 a.m.25 views

Fedora Update for libtasn1 FEDORA-2016-96

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS6.2AI score0.29572EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2016/04/28 12:0 a.m.27 views

Fedora 22 : libtasn1-4.8-1.fc22 (2016-96bfd9e873)

Update to 4.8 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable Network...

5.9CVSS6.5AI score0.29572EPSS
Exploits0References3
Rows per page
Query Builder