Alerts This Week
Warning Icon 1 646
Alerts This Week
Warning Icon 1 646

Fedora 21: FEDORA-2015-7288 Critical: libtasn1 Heap Overflow

fedora
Calendar Grey May 19, 2015
Dist Fedora Esm H88
Debian 10 libxml2 patch resolves serious vulnerabilities in XML processing library. Update via apt for improved protection.
Update to 4.5 (#1217282)

Summary

A library that provides Abstract Syntax Notation One (ASN.1, as specified

by the X.680 ITU-T recommendation) parsing and structures management, and

Distinguished Encoding Rules (DER, as per X.690) encoding and decoding functions.

Update Information:

Update to 4.5 (#1217282)

Topics%20covered

Topics Covered

security advisory critical software update Fedora heap overflow ASN.1 libtasn1

Change Log

* Thu Apr 30 2015 Nikos Mavrogiannopoulos - 4.5-1 - Update to 4.5 (#1217282) * Mon Mar 30 2015 Nikos Mavrogiannopoulos - 4.4-1 - new upstream release (#1206968) - fixes stack overflow in DER decoder * Tue Mar 10 2015 Nikos Mavrogiannopoulos - 4.3-1 - new upstream release

References


[ 1 ] Bug #1218141 - CVE-2015-3622 libtasn1: heap overflow flaw in _asn1_extract_der_octet() https://bugzilla.redhat.com/show_bug.cgi?id=1218141

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update libtasn1' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
critical
Lowest
Low
Medium
High
Critical

Name: libtasn1
Product: Fedora 21
Version: 4.5
Release: 1.fc21
URL:
Summary: The ASN.1 library used in GNUTLS

Topics%20covered

Topics Covered

security advisory critical software update Fedora heap overflow ASN.1 libtasn1

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here