Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

Fedora 40: FEDORA-2025-a5edb54660 Critical: libtasn1 DoS Fix

fedora
Calendar Grey February 26, 2025
Dist Fedora Esm H88
Debian 12 upgrades tackle local privilege escalation in systemd, strengthening overall stability.
Includes CVE fixes.

Summary

A library that provides Abstract Syntax Notation One (ASN.1, as specified

by the X.680 ITU-T recommendation) parsing and structures management, and

Distinguished Encoding Rules (DER, as per X.690) encoding and decoding functions.

Update Information:

Includes CVE fixes.

Topics%20covered

Topics Covered

security advisory fedora update critical Fedora DoS remote threat dos threat cve fix libtasn1

Change Log

* Fri Feb 14 2025 Zoltan Fridrich - 4.20.0-1 - Update to 4.20.0 upstream release

References


[ 1 ] Bug #2344196 - libtasn1-4.20.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2344196 [ 2 ] Bug #2344613 - CVE-2024-12133 libtasn1: Inefficient DER Decoding in libtasn1 Leading to Potential Remote DoS [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2344613 [ 3 ] Bug #2344614 - CVE-2024-12133 libtasn1: Inefficient DER Decoding in libtasn1 Leading to Potential Remote DoS [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2344614

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-a5edb54660' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: libtasn1
Product: Fedora 40
Version: 4.20.0
Release: 1.fc40
URL:
Summary: The ASN.1 library used in GNUTLS

Topics%20covered

Topics Covered

security advisory fedora update critical Fedora DoS remote threat dos threat cve fix libtasn1

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here