Pascal Cuoq

Name of the Vulnerable Software and Affected Versions: LibreSSL versions prior to 2.3.1 Description: The issue is related to a memory leak in the OBJ obj2txt function, which can be exploited by remote attackers to cause a denial of service through excessive memory consumption. This can be achieved by sending a large number of ASN.1 object identifiers in X.509 certificates. Recommendations: For versions prior to 2.3.1, update to version 2.3.1 or later to resolve the issue.

Name of the Vulnerable Software and Affected Versions: LibreSSL versions prior to 2.3.1 Description: The issue is caused by an off-by-one error in the OBJ obj2txt function, which can be triggered by a crafted X.509 certificate. This can lead to a denial of service (program crash) or potentially allow the execution of arbitrary code via a stack-based buffer overflow. Recommendations: For versions prior to 2.3.1, update to version 2.3.1 or later to resolve the issue. As a temporary workaround, consider restricting the processing of crafted X.509 certificates to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Libksba versions prior to 1.3.4 **Description** The issue is caused by an off-by-one error in the `append utf8 value` function within the DN decoder (dn.c) in Libksba. This error allows remote attackers to cause a denial of service (out-of-bounds read) via invalid utf-8 encoded data. **Recommendations** For versions prior to 1.3.4, update to version 1.3.4 or later to resolve the issue. As a temporary workaround, consider restricting the input of utf-8 encoded data to prevent exploitation.

**Name of the Vulnerable Software and Affected Versions** Libksba versions prior to 1.3.4 **Description** The issue allows remote attackers to cause a denial of service, resulting in an out-of-bounds read and crash. This is related to the returned length of the object from ` ksba ber parse tl`. **Recommendations** For versions prior to 1.3.4, update to version 1.3.4 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** GNU Libtasn1 versions prior to 4.8 **Description** The issue allows remote attackers to cause a denial of service, specifically an infinite recursion, through a crafted certificate. This occurs when the ` asn1 extract der octet` function in `lib/decoding.c` is used without the `ASN1 DECODE FLAG STRICT DER` flag. **Recommendations** For versions prior to 4.8, update to version 4.8 or later to resolve the issue. As a temporary workaround, consider using the `ASN1 DECODE FLAG STRICT DER` flag when utilizing the ` asn1 extract der octet` function to minimize the risk of exploitation.