PT-2025-15291 · Unknown · Ts-Asn1-Der

Name of the Vulnerable Software and Affected Versions: ts-asn1-der versions prior to 1.0.4 Description: The issue is related to incorrect number DER encoding, which can lead to denial of service for absolute values in the range 231 to 232 - 1. This is due to the arithmetic in the numBitLen not...

SUSE CVE-2014-1569

The definitelengthdecoder function in lib/util/quickder.c in Mozilla Network Security Services NSS before 3.16.2.4 and 3.17.x before 3.17.3 does not ensure that the DER encoding of an ASN.1 length is properly formed, which allows remote attackers to conduct data-smuggling attacks by using a long...