Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 519
Alerts This Week
Warning Icon 1 519

Fedora 23: FEDORA-2016-383b8250e6 Critical: libtasn1 Infinite Loop

fedora
Calendar Grey April 22, 2016
Dist Fedora Esm H88
Fedora 23 upgrades libtasn1 to version 4.8 to resolve a problem causing an infinite loop when parsing DER certificates.
Update to 4.8

Summary

A library that provides Abstract Syntax Notation One (ASN.1, as specified

by the X.680 ITU-T recommendation) parsing and structures management, and

Distinguished Encoding Rules (DER, as per X.690) encoding and decoding functions.

Update Information:

Update to 4.8

Change Log

References


[ 1 ] Bug #1325965 - CVE-2016-4008 libtasn1: infinite loop while parsing DER certificates https://bugzilla.redhat.com/show_bug.cgi?id=1325965

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update libtasn1' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
critical
Lowest
Low
Medium
High
Critical

Name: libtasn1
Product: Fedora 23
Version: 4.8
Release: 1.fc23
URL:
Summary: The ASN.1 library used in GNUTLS

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.