libtasn1-4.10-1.el7
エラータID: AXSA:2017-1751:01
Libtasn1 is a library that provides Abstract Syntax Notation One (ASN.1, as
specified by the X.680 ITU-T recommendation) parsing and structures
management, and Distinguished Encoding Rules (DER, as per X.690) encoding and
decoding functions.
Security issues fixed with this release:
CVE-2015-3622
** RESERVED **
A heap-based buffer overflow flaw was found in the way the libtasn1 library
decoded certain DER-encoded inputs. A specially crafted DER-encoded input could
cause an application using libtasn1 to perform an invalid read, causing the
application to crash.
CVE-2015-2806
** RESERVED **
A stack-based buffer overflow was found in the way libtasn1 decoded certain DER
encoded data. An attacker could use this flaw to crash an application using the
libtasn1 library.
Update packages.
Stack-based buffer overflow in asn1_der_decoding in libtasn1 before 4.4 allows remote attackers to have unspecified impact via unknown vectors.
The _asn1_extract_der_octet function in lib/decoding.c in GNU Libtasn1 before 4.5 allows remote attackers to cause a denial of service (out-of-bounds heap read) via a crafted certificate.
N/A
SRPMS
- libtasn1-4.10-1.el7.src.rpm
MD5: bd635766bf244c3b5a90bce59ae6d159
SHA-256: 1779ad08fe641ec2d01622a87bad2f7b5f3c313648581c6dfa340b71686c5e52
Size: 1.81 MB
Asianux Server 7 for x86_64
- libtasn1-4.10-1.el7.x86_64.rpm
MD5: dd6298e58dfcadd7d82cab9efb5415f7
SHA-256: b84d5bc327aa13ccf2256994dfaf169fa68e15e5f619d316b0863e13a6ff7563
Size: 319.43 kB - libtasn1-devel-4.10-1.el7.x86_64.rpm
MD5: 0d95ca97c3afb902bcd98a7d128153fd
SHA-256: 84db1fb827bb143904b5d033afa89832c4a166f7dbc5c6c5182d97fca2f1280a
Size: 74.12 kB - libtasn1-4.10-1.el7.i686.rpm
MD5: 0eeffcf1be82d3a776308ad32dca1446
SHA-256: 40e0c3c1f8c45c5113ed7dd643833d8af6504f638af730d4cb703547480f5313
Size: 319.54 kB - libtasn1-devel-4.10-1.el7.i686.rpm
MD5: 63f33969b20b28708deb963506ac33eb
SHA-256: f70bd77c5bf451d1c6ca69c80f9e06d232bf86b886cb3f179fcf38386841460c
Size: 74.15 kB