Fedora 20 Security Update: Critical Libtasn1 Stack Overflow Fix
fedora
April 18, 2015
backported fix for stack overflow in DER decoder
Summary
A library that provides Abstract Syntax Notation One (ASN.1, as specified
by the X.680 ITU-T recommendation) parsing and structures management, and
Distinguished Encoding Rules (DER, as per X.690) encoding and decoding functions.
Update Information:
backported fix for stack overflow in DER decoder
Topics Covered
Change Log
* Mon Mar 30 2015 Nikos Mavrogiannopoulos
References
[ 1 ] Bug #1207192 - CVE-2015-2806 libtasn1: stack overflow in asn1_der_decoding
https://bugzilla.redhat.com/show_bug.cgi?id=1207192
Update Instructions
This update can be installed with the "yum" update program. Use su -c 'yum update libtasn1' at the command line. For more information, refer to "Managing Software with yum", available at .
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Name: libtasn1
Product: Fedora 20
Version: 3.8
Release: 3.fc20
URL:
Summary: The ASN.1 library used in GNUTLS
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!