Alerts This Week
Warning Icon 1 1,295
Alerts This Week
Warning Icon 1 1,295

Ubuntu 25.10: Libtasn1 Important DoS Crash Flaw USN-7954-1

ubuntu
Calendar Grey January 12, 2026
Dist Ubuntu Esm H88
Libtasn1 denial of service vulnerabilities require updates across multiple Ubuntu releases to prevent potential crashes.
Libtasn1 could be made to crash if it received specially crafted input.

Summary

Libtasn1 could be made to crash if it received specially crafted input.

Software Description:

- libtasn1-6: Library to manage ASN.1 structures

Details:

It was discovered that Libtasn1 incorrectly handled decoding ASN.1 content.

An attacker could possibly use this issue to cause Libtasn1 to crash,

resulting in a denial of service. (CVE-2025-13151)

It was discovered that Libtasn1 incorrectly handled encoding ASN.1 content.

An attacker could possibly use this issue to cause Libtasn1 to crash,

resulting in a denial of service. This issue only affected Ubuntu 22.04

LTS. (CVE-2021-46848)

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 25.10
  libtasn1-6                      4.20.0-2ubuntu0.25.10.1

Ubuntu 25.04
  libtasn1-6                      4.20.0-2ubuntu0.25.04.1

Ubuntu 24.04 LTS
  libtasn1-6                      4.19.0-3ubuntu0.24.04.2

Ubuntu 22.04 LTS
  libtasn1-6                      4.18.0-4ubuntu0.2

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-7954-1

CVE-2021-46848, CVE-2025-13151

Severity
important
Lowest
Low
Medium
High
Critical

Ubuntu Security Notice USN-7954-1

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here