Vulnerabilities (CVE)

Filtered by vendor Gnu Subscribe

Filtered by product Libtasn1

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2018-6003	3 Debian, Fedoraproject, Gnu	3 Debian Linux, Fedora, Libtasn1	2021-06-29	5.0 MEDIUM	7.5 HIGH
An issue was discovered in the _asn1_decode_simple_ber function in decoding.c in GNU Libtasn1 before 4.13. Unlimited recursion in the BER decoder leads to stack exhaustion and DoS.
CVE-2017-10790	1 Gnu	1 Libtasn1	2021-06-29	5.0 MEDIUM	7.5 HIGH
The _asn1_check_identifier function in GNU Libtasn1 through 4.12 causes a NULL pointer dereference and crash when reading crafted input that triggers assignment of a NULL value within an asn1_node structure. It may lead to a remote denial of service attack.