7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
6.9 Medium
AI Score
Confidence
High
0.02 Low
EPSS
Percentile
88.8%
Package : libtasn1-3
Version : 2.7-1+squeeze+2
CVE ID : CVE-2014-3467 CVE-2014-3468 CVE-2014-3469
Several vulnerabilities were discovered in libtasn1-3, a library that
manages ASN1 (Abstract Syntax Notation One) structures. An attacker
could use those to cause a denial-of-service via out-of-bounds access
or NULL pointer dereference.
–Seb
Attachment:
signature.asc
Description: Digital signature
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 6 | amd64 | libtasn1-3-dbg | < 2.7-1+squeeze+2 | libtasn1-3-dbg_2.7-1+squeeze+2_amd64.deb |
Debian | 7 | kfreebsd-amd64 | libtasn1-3-dbg | < 2.13-2+deb7u1 | libtasn1-3-dbg_2.13-2+deb7u1_kfreebsd-amd64.deb |
Debian | 7 | sparc | libtasn1-3-dbg | < 2.13-2+deb7u1 | libtasn1-3-dbg_2.13-2+deb7u1_sparc.deb |
Debian | 7 | armel | libtasn1-3 | < 2.13-2+deb7u1 | libtasn1-3_2.13-2+deb7u1_armel.deb |
Debian | 7 | i386 | libtasn1-3-dev | < 2.13-2+deb7u1 | libtasn1-3-dev_2.13-2+deb7u1_i386.deb |
Debian | 7 | all | libtasn1-3 | < 2.13-2+deb7u1 | libtasn1-3_2.13-2+deb7u1_all.deb |
Debian | 7 | powerpc | libtasn1-3-dev | < 2.13-2+deb7u1 | libtasn1-3-dev_2.13-2+deb7u1_powerpc.deb |
Debian | 7 | powerpc | libtasn1-3-bin | < 2.13-2+deb7u1 | libtasn1-3-bin_2.13-2+deb7u1_powerpc.deb |
Debian | 7 | ia64 | libtasn1-3 | < 2.13-2+deb7u1 | libtasn1-3_2.13-2+deb7u1_ia64.deb |
Debian | 7 | sparc | libtasn1-3 | < 2.13-2+deb7u1 | libtasn1-3_2.13-2+deb7u1_sparc.deb |