PT-2018-17286 · Gnu+3 · Gnu Libtasn1+3

Published

2018-01-22

Updated

2024-06-15

CVE-2018-6003

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions: GNU Libtasn1 versions prior to 4.13

Description: An issue in the asn1 decode simple ber function in decoding.c leads to unlimited recursion in the BER decoder, resulting in stack exhaustion and denial of service.

Recommendations: For versions prior to 4.13, update to version 4.13 or later to resolve the issue.

Fix

DoS

Uncontrolled Recursion

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-674

Related Identifiers

ALT-PU-2018-1088

CVE-2018-6003

DSA-4106-1

MGASA-2018-0121

OPENSUSE-SU-2024:11001-1

SUSE-SU-2018:0295-1

SUSE-SU-2018_0295-1

USN-3547-1

Affected Products

Alt Linux

Gnu Libtasn1

Suse

Ubuntu

PT-2018-17286 · Gnu+3 · Gnu Libtasn1+3

CVE-2018-6003

Weakness Enumeration

Related Identifiers

Affected Products

References · 42