GoogleOSV:USN-5707-1

HistoryOct 31, 2022 - 2:57 p.m.

Vulners
/
Osv
/
libtasn1-6 vulnerability

libtasn1-6 vulnerability

2022-10-3114:57:35

Google

osv.dev

bounds checking

software crash

9.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

7.2 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

73.3%

JSON

It was discovered that Libtasn1 did not properly perform bounds
checking. An attacker could possibly use this issue to cause a
crash.

References

ubuntu.com/security/CVE-2021-46848

ubuntu.com/security/notices/USN-5707-1

redos 1

nessus 38

rocky 2

osv 6

oraclelinux 2

rosalinux 1

redhatcve 1

veracode 1

fedora 4

alpinelinux 1

ubuntucve 1

openvas 26

amazon 1

cve 1

redhat 40

ibm 11

cbl_mariner 2

prion 1

debian 1

suse 1

cvelist 1

mageia 1

nvd 1

almalinux 2

debiancve 1

ubuntu 1

photon 4

qualysblog 1

oracle 2

ics 1

avleonov 1

redos

ROS-20221103-04

2022-11-03 00:00:00

nessus

Fedora 36 : libtasn1 (2022-3f9ee1ad91)

2022-12-22 00:00:00

RHEL 8 : libtasn1 (RHSA-2024:0427)

2024-01-25 00:00:00

EulerOS Virtualization 2.10.1 : libtasn1 (EulerOS-SA-2023-1891)

2023-05-16 00:00:00

rocky

libtasn1 security update

2023-01-12 08:25:44

libtasn1 security update

2023-01-23 14:30:54

osv

Moderate: libtasn1 security update

2023-01-23 14:30:54

libtasn1-6 - security update

2023-01-09 00:00:00

CVE-2021-46848

2022-10-24 14:15:49

oraclelinux

libtasn1 security update

2023-01-12 00:00:00

libtasn1 security update

2023-01-25 00:00:00

rosalinux

Advisory ROSA-SA-2023-2194

2023-07-18 11:28:24

redhatcve

CVE-2021-46848

2022-11-04 10:26:05

veracode

Denial Of Service (DoS)

2022-11-03 02:52:05

fedora

[SECURITY] Fedora 37 Update: mingw-libtasn1-4.19.0-1.fc37

2022-11-14 01:14:16

[SECURITY] Fedora 35 Update: mingw-libtasn1-4.19.0-1.fc35

2022-11-13 01:21:02

[SECURITY] Fedora 36 Update: libtasn1-4.19.0-1.fc36

2022-12-18 01:41:06

alpinelinux

CVE-2021-46848

2022-10-24 14:15:49

ubuntucve

CVE-2021-46848

2022-10-25 00:00:00

openvas

Huawei EulerOS: Security Advisory for libtasn1 (EulerOS-SA-2023-1922)

2023-05-16 00:00:00

Huawei EulerOS: Security Advisory for libtasn1 (EulerOS-SA-2023-1390)

2023-02-10 00:00:00

Huawei EulerOS: Security Advisory for libtasn1 (EulerOS-SA-2023-1658)

2023-04-27 00:00:00

amazon

Important: libtasn1

2023-01-18 00:16:00

cve

CVE-2021-46848

2022-10-24 14:15:49

redhat

(RHSA-2023:0343) Moderate: libtasn1 security update

2023-01-23 14:30:54

(RHSA-2024:0427) Moderate: libtasn1 security update

2024-01-24 14:40:31

(RHSA-2023:0116) Moderate: libtasn1 security update

2023-01-12 08:25:44

ibm

Security Bulletin: Vulnerability in libtasn1 (CVE-2021-46848) affects Power HMC

2023-04-27 02:05:22

Security Bulletin: IBM Watson Assistant for IBM Cloud Pak for Data is vulnerable to GNU Libtasn1 information disclosure vulnerability [CVE-2021-46848]

2023-07-11 13:36:17

Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a security restrictions bypass in GNU Libtasn1 [CVE-2021-46848]

2023-04-06 19:19:13

cbl_mariner

CVE-2021-46848 affecting package libtasn1 for versions less than 4.19.0-1

2022-10-27 18:36:13

CVE-2021-46848 affecting package libtasn1 4.14-2

2022-11-03 00:44:52

prion

Code injection

2022-10-24 14:15:00

debian

[SECURITY] [DLA 3263-1] libtasn1-6 security update

2023-01-09 18:00:51

suse

Security update for libtasn1 (critical)

2022-10-26 00:00:00

cvelist

CVE-2021-46848

2022-10-24 00:00:00

mageia

Updated libtasn1 packages fix security vulnerability

2022-11-08 22:44:28

nvd

CVE-2021-46848

2022-10-24 14:15:49

almalinux

Moderate: libtasn1 security update

2023-01-23 00:00:00

Moderate: libtasn1 security update

2023-01-12 00:00:00

debiancve

CVE-2021-46848

2022-10-24 14:15:49

ubuntu

Libtasn1 vulnerability

2022-10-31 00:00:00

photon

Critical Photon OS Security Update - PHSA-2022-3.0-0479

2022-10-28 00:00:00

Critical Photon OS Security Update - PHSA-2022-0533

2022-10-28 00:00:00

Critical Photon OS Security Update - PHSA-2022-0271

2022-10-28 00:00:00

qualysblog

Oracle Patch Update, January 2024 Security Update Review

2024-01-17 15:29:33

oracle

Oracle Critical Patch Update Advisory - January 2024

2024-01-16 00:00:00

Oracle Critical Patch Update Advisory - April 2023

2023-04-18 00:00:00

ics

Siemens SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1

2023-12-14 12:00:00

avleonov

Scanvus now supports Vulners and Vulns.io VM Linux vulnerability detection APIs

2022-12-30 18:03:13

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

9.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

7.2 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

73.3%

JSON

Related for OSV:USN-5707-1