Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

Fedora 20: 2015-5390 Moderate: mingw-libtasn1 Stack Overflow

fedora
Calendar Grey April 21, 2015
Dist Fedora Esm H88
To mitigate the stack overflow vulnerability in mingw-libtasn1 on Fedora 20 linked to CVE-2015-2806, implement crucial security enhancements to safeguard against exploits.
Security fix for CVE-2015-2806.

Summary

libtasn1 is the ASN.1 library used in GNUTLS.

This package contains the MinGW Windows cross compiled libtasn1 library.

Update Information:

Security fix for CVE-2015-2806.

Topics%20covered

Topics Covered

security advisory Fedora security fix stack overflow mingw-libtasn1

Change Log

* Tue Mar 31 2015 Kalev Lember - 3.8-2 - Backported fix for stack overflow in DER decoder (CVE-2015-2806) * Thu Sep 11 2014 Michael Cronenworth - 3.8-1 - Update to 3.8 * Tue Jul 1 2014 Michael Cronenworth - 3.7-1 - Update to 3.7 * Mon May 26 2014 Michael Cronenworth - 3.6-1 - Update to 3.6

References


[ 1 ] Bug #1207192 - CVE-2015-2806 libtasn1: stack overflow in asn1_der_decoding https://bugzilla.redhat.com/show_bug.cgi?id=1207192

Update Instructions

This update can be installed with the "yum" update program. Use su -c ''yum update mingw-libtasn1'' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
important
Lowest
Low
Medium
High
Critical

Name: mingw-libtasn1
Product: Fedora 20
Version: 3.8
Release: 2.fc20
URL:
Summary: MinGW Windows libtasn1 library

Topics%20covered

Topics Covered

security advisory Fedora security fix stack overflow mingw-libtasn1

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here