Lucene search

K

Veracode Vulnerability DatabaseVERACODE:7285

HistoryAug 13, 2018 - 8:56 a.m.

Denial Of Service (DoS) Through Out-of-Bounds Read

2018-08-1308:56:21

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

10

0.02 Low

EPSS

Percentile

88.8%

libtasn1.so is vulnerable to denial of service (DoS) attacks. The library contains multiple missing boundary checks, allowing a malicious user to pass ASN.1 input to cause an out-of-bounds read that can crash the application.

CPENameOperatorVersion
libtasn1.sole3.2.0

References

advisories.mageia.org/MGASA-2014-0247.html

linux.oracle.com/errata/ELSA-2014-0594.html

linux.oracle.com/errata/ELSA-2014-0596.html

lists.gnu.org/archive/html/help-libtasn1/2014-05/msg00006.html

lists.opensuse.org/opensuse-security-announce/2014-06/msg00002.html

lists.opensuse.org/opensuse-security-announce/2014-06/msg00015.html

rhn.redhat.com/errata/RHSA-2014-0594.html

rhn.redhat.com/errata/RHSA-2014-0596.html

rhn.redhat.com/errata/RHSA-2014-0687.html

rhn.redhat.com/errata/RHSA-2014-0815.html

secunia.com/advisories/58591

secunia.com/advisories/58614

secunia.com/advisories/59021

secunia.com/advisories/59057

secunia.com/advisories/59408

secunia.com/advisories/60320

secunia.com/advisories/60415

secunia.com/advisories/61888

support.f5.com/kb/en-us/solutions/public/15000/400/sol15423.html

www.debian.org/security/2014/dsa-3056

www.mandriva.com/security/advisories?name=MDVSA-2015:116

www.novell.com/support/kb/doc.php?id=7015302

www.novell.com/support/kb/doc.php?id=7015303

bugzilla.redhat.com/show_bug.cgi?id=1102022

github.com/gnutls/libtasn1/compare/83e082736887afcaec3fd92b06b7fde8b5d78837...51612fca32dda445056ca9a7533bae258acd3ecb

0.02 Low

EPSS

Percentile

88.8%

Related for VERACODE:7285

ubuntucve1 debiancve1 cve1 cvelist1 veracode2 prion1 nvd1 f52 debian2 nessus27 suse6 openvas26 osv1 redhat4 fedora2 centos2 ubuntu1 slackware2 gentoo1 oraclelinux3 amazon1 mageia1 securityvulns2 rosalinux1