CVE-2015-3622

EPSS 6.1%

libtasn1-6 - security update

Published: 5/12/2015Modified: 4/28/2026

Description

The _asn1_extract_der_octet function in lib/decoding.c in GNU Libtasn1 before 4.5 allows remote attackers to cause a denial of service (out-of-bounds heap read) via a crafted certificate.

Affected packages (2)

Debian/libtasn1-6from 0, < 4.4-3
Debian/libtasn1-6from 0, < 4.2-3+deb8u1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2015-3622