ALT-PU-2022-3082-1
Closed vulnerabilities
Published: 2022-10-24
BDU:2022-06694
Уязвимость функции asn1_encode_simple_der() библиотеки Libtasn1, позволяющая нарушителю раскрыть защищаемую информацию или вызвать отказ в обслуживании
Severity: CRITICAL (9.1)
Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
References:
Published: 2022-10-24
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2021-46848
GNU Libtasn1 before 4.19.0 has an ETYPE_OK off-by-one array size check that affects asn1_encode_simple_der.
Severity: CRITICAL (9.1)
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
References:
- https://bugs.gentoo.org/866237
- https://bugs.gentoo.org/866237
- https://gitlab.com/gnutls/libtasn1/-/commit/44a700d2051a666235748970c2df047ff207aeb5
- https://gitlab.com/gnutls/libtasn1/-/commit/44a700d2051a666235748970c2df047ff207aeb5
- https://gitlab.com/gnutls/libtasn1/-/issues/32
- https://gitlab.com/gnutls/libtasn1/-/issues/32
- [debian-lts-announce] 20230109 [SECURITY] [DLA 3263-1] libtasn1-6 security update
- [debian-lts-announce] 20230109 [SECURITY] [DLA 3263-1] libtasn1-6 security update
- FEDORA-2022-3c933ffaca
- FEDORA-2022-3c933ffaca
- FEDORA-2022-3f9ee1ad91
- FEDORA-2022-3f9ee1ad91
- FEDORA-2022-061f857481
- FEDORA-2022-061f857481
- FEDORA-2022-19056934a7
- FEDORA-2022-19056934a7
- https://security.netapp.com/advisory/ntap-20221118-0006/
- https://security.netapp.com/advisory/ntap-20221118-0006/