ALT-BU-2025-4180-1
Branch p9 update bulletin.
Closed vulnerabilities
Modified: 2025-02-22
CVE-2024-12243
A flaw was found in GnuTLS, which relies on libtasn1 for ASN.1 data processing. Due to an inefficient algorithm in libtasn1, decoding certain DER-encoded certificate data can take excessive time, leading to increased resource consumption. This flaw allows a remote attacker to send a specially crafted certificate, causing GnuTLS to become unresponsive or slow, resulting in a denial-of-service condition.
Closed vulnerabilities
BDU:2022-06694
Уязвимость функции asn1_encode_simple_der() библиотеки Libtasn1, позволяющая нарушителю раскрыть защищаемую информацию или вызвать отказ в обслуживании
Modified: 2024-11-21
CVE-2021-46848
GNU Libtasn1 before 4.19.0 has an ETYPE_OK off-by-one array size check that affects asn1_encode_simple_der.
- https://bugs.gentoo.org/866237
- https://bugs.gentoo.org/866237
- https://gitlab.com/gnutls/libtasn1/-/commit/44a700d2051a666235748970c2df047ff207aeb5
- https://gitlab.com/gnutls/libtasn1/-/commit/44a700d2051a666235748970c2df047ff207aeb5
- https://gitlab.com/gnutls/libtasn1/-/issues/32
- https://gitlab.com/gnutls/libtasn1/-/issues/32
- [debian-lts-announce] 20230109 [SECURITY] [DLA 3263-1] libtasn1-6 security update
- [debian-lts-announce] 20230109 [SECURITY] [DLA 3263-1] libtasn1-6 security update
- FEDORA-2022-3c933ffaca
- FEDORA-2022-3c933ffaca
- FEDORA-2022-3f9ee1ad91
- FEDORA-2022-3f9ee1ad91
- FEDORA-2022-061f857481
- FEDORA-2022-061f857481
- FEDORA-2022-19056934a7
- FEDORA-2022-19056934a7
- https://security.netapp.com/advisory/ntap-20221118-0006/
- https://security.netapp.com/advisory/ntap-20221118-0006/
Modified: 2025-02-21
CVE-2024-12133
A flaw in libtasn1 causes inefficient handling of specific certificate data. When processing a large number of elements in a certificate, libtasn1 takes much longer than expected, which can slow down or even crash the system. This flaw allows an attacker to send a specially crafted certificate, causing a denial of service attack.