Computer Security
[EN] securityvulns.ru no-pyccku


libtasn1 / GnuTLS memory corruption
Published:14.05.2012
Source:
SecurityVulns ID:12381
Type:library
Threat Level:
6/10
Description:Memory corruption on some malformed values.
Affected:GNU : gnutls 3.0
 GNU : libtasn1 2.11
CVE:CVE-2012-1569 (The asn1_get_length_der function in decoding.c in GNU Libtasn1 before 2.12, as used in GnuTLS before 3.0.16 and other products, does not properly handle certain large length values, which allows remote attackers to cause a denial of service (heap memory corruption and application crash) or possibly have unspecified other impact via a crafted ASN.1 structure.)
Original documentdocumentUBUNTU, [USN-1436-1] Libtasn1 vulnerability (14.05.2012)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod