CVE-2025-13151

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions libtasn1 versions prior to 4.21.0

Description A stack-based buffer overflow exists in the asn1 expend octet string function of libtasn1. The function does not properly validate the size of input data, leading to a buffer overflow. Libtasn1 is a library used for manipulating ASN.1 objects, including DER/BER encoding and decoding, and is utilized by GnuTLS for handling X.509 structures.

Recommendations Update to version 4.21.0 or later.

Fix

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

AZL-73664

AZL-74006

AZL-74046

AZL-74070

BDU:2026-05140

CLEANSTART-2026-AF52025

CLEANSTART-2026-AG21538

CLEANSTART-2026-AX74442

CLEANSTART-2026-CH17958

CLEANSTART-2026-CO09549

CLEANSTART-2026-CP08056

CLEANSTART-2026-DJ93523

CLEANSTART-2026-DK70097

CLEANSTART-2026-DP59378

CLEANSTART-2026-EO57061

CLEANSTART-2026-GN22652

CLEANSTART-2026-HH39661

CLEANSTART-2026-HJ96712

CLEANSTART-2026-HL08143

CLEANSTART-2026-HM96194

CLEANSTART-2026-IB04141

CLEANSTART-2026-IJ23041

CLEANSTART-2026-IN87004

CLEANSTART-2026-IO64153

CLEANSTART-2026-JH41080

CLEANSTART-2026-JL41223

CLEANSTART-2026-JP09281

CLEANSTART-2026-KF75900

CLEANSTART-2026-KH40159

CLEANSTART-2026-KJ79497

CLEANSTART-2026-KX82113

CLEANSTART-2026-LB69194

CLEANSTART-2026-LF33811

CLEANSTART-2026-NJ24264

CLEANSTART-2026-NN56899

CLEANSTART-2026-OV74385

CLEANSTART-2026-PD43534

CLEANSTART-2026-PH91954

CLEANSTART-2026-PO55014

CLEANSTART-2026-QM31011

CLEANSTART-2026-QP67751

CLEANSTART-2026-RO34407

CLEANSTART-2026-RO70091

CLEANSTART-2026-SZ14466

CLEANSTART-2026-TB28500

CLEANSTART-2026-TL29125

CLEANSTART-2026-UB19292

CLEANSTART-2026-UN47141

CLEANSTART-2026-UV97144

CLEANSTART-2026-UZ82654

CVE-2025-13151

ECHO-3BB0-6190-9618

MGASA-2026-0007

OESA-2026-1232

OPENSUSE-SU-2026:10033-1

OPENSUSE-SU-2026:20470-1

RHSA-2026:7500

SUSE-SU-2026:0118-1

SUSE-SU-2026:0224-1

SUSE-SU-2026:20051-1

SUSE-SU-2026:20355-1

SUSE-SU-2026:21001-1

SUSE-SU-2026:21142-1

USN-7954-1

USN-7954-2

Affected Products

Debian

Gnutls

Linuxmint

Ubuntu

Libtasn1

CVE-2025-13151

Weakness Enumeration

Related Identifiers

Affected Products

References · 165