Lucene search
F5F5:K15423HistoryJul 17, 2014 - 12:00 a.m.
K15423 : GNU Libtasn1 vulnerabilities CVE-2014-3467 and CVE-2014-3468
2014-07-1700:00:00
my.f5.com
21
Security Advisory Description
GNU Libtasn1 has been cited with the following vulnerabilities, which may be exploitable on some F5 products:
Multiple unspecified vulnerabilities in the DER decoder in GNU Libtasn1 before 3.6, as used in GnutTLS, allow remote attackers to cause a denial of service (out-of-bounds read) via a crafted ASN.1 data.
The asn1_get_bit_der function in GNU Libtasn1 before 3.6 does not properly report an error when a negative bit length is identified, which allows context-dependent attackers to cause out-of-bounds access via crafted ASN.1 data.
Impact
An attacker may be able to cause a denial of service (out-of-bounds read) using crafted ASN.1 data.
Related
f5
f5
SOL15423 - GNU Libtasn1 vulnerabilities CVE-2014-3467 and CVE-2014-3468
2014-07-17 00:00:00
nessus
nessus
Amazon Linux AMI : libtasn1 (ALAS-2014-359)
2014-10-12 00:00:00
Fedora 20 : libtasn1-3.6-1.fc20 (2014-6895)
2014-06-05 00:00:00
Scientific Linux Security Update : libtasn1 on SL6.x i386/x86_64 (20140603)
2014-06-04 00:00:00
suse
suse
Security update for libtasn1 (important)
2014-07-24 03:05:20
Security update for GnuTLS (important)
2014-06-13 02:04:36
Security update for GnuTLS (important)
2014-06-13 00:04:29
openvas
openvas
SUSE: Security Advisory for libtasn1 (SUSE-SU-2014:0931-1)
2015-10-13 00:00:00
Slackware: Security Advisory (SSA:2014-156-02)
2022-04-21 00:00:00
CentOS Update for libtasn1 CESA-2014:0596 centos6
2014-06-09 00:00:00
debian
debian
[SECURITY] [DLA 77-1] libtasn1-3 security update
2014-10-26 13:15:15
[SECURITY] [DSA 3056-1] libtasn1-3 security update
2014-10-26 12:44:20
osv
osv
libtasn1-3 - security update
2014-10-26 00:00:00
redhat
redhat
(RHSA-2014:0687) Moderate: libtasn1 security update
2014-06-10 00:00:00
(RHSA-2014:0596) Moderate: libtasn1 security update
2014-06-03 00:00:00
(RHSA-2014:0594) Important: gnutls security update
2014-06-03 00:00:00
fedora
fedora
[SECURITY] Fedora 19 Update: libtasn1-3.6-1.fc19
2014-06-10 03:06:24
[SECURITY] Fedora 20 Update: libtasn1-3.6-1.fc20
2014-06-04 07:52:16
slackware
slackware
[slackware-security] libtasn1
2014-06-06 05:26:49
[slackware-security] gnutls
2014-06-06 05:26:16
gentoo
gentoo
GNU Libtasn1: Multiple vulnerabilities
2014-08-29 00:00:00
centos
centos
libtasn1 security update
2014-06-04 10:04:23
gnutls security update
2014-06-04 09:31:23
ubuntu
ubuntu
Libtasn1 vulnerabilities
2014-07-22 00:00:00
oraclelinux
oraclelinux
libtasn1 security update
2014-07-23 00:00:00
libtasn1 security update
2014-06-03 00:00:00
gnutls security update
2014-06-03 00:00:00
amazon
amazon
Medium: libtasn1
2014-06-15 16:22:00
mageia
mageia
Updated libtasn1 packages fix CVE-2014-3467-9
2014-06-02 22:44:30
veracode
veracode
Denial Of Service (DoS)
2019-05-02 05:03:32
Out-of-Bounds Access
2018-08-13 08:27:26
Denial Of Service (DoS) Through Out-of-Bounds Read
2018-08-13 08:56:21
ubuntucve
ubuntucve
CVE-2014-3467
2014-06-05 00:00:00
CVE-2014-3468
2014-06-05 00:00:00
debiancve
debiancve
CVE-2014-3467
2014-06-05 20:55:06
CVE-2014-3468
2014-06-05 20:55:06
securityvulns
securityvulns
GnuTLS and libtasn1 multiple security vulnerabilities
2014-06-02 00:00:00
[oss-security] GnuTLS and libtasn1 security fixes
2014-06-02 00:00:00
cvelist
cvelist
CVE-2014-3468
2014-06-05 20:00:00
CVE-2014-3467
2014-06-05 20:00:00
cve
cve
CVE-2014-3468
2014-06-05 20:55:06
CVE-2014-3467
2014-06-05 20:55:06
nvd
nvd
CVE-2014-3468
2014-06-05 20:55:06
CVE-2014-3467
2014-06-05 20:55:06
prion
prion
Out-of-bounds
2014-06-05 20:55:00
Out-of-bounds
2014-06-05 20:55:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1847
2021-07-02 16:58:09