mirror of
https://github.com/0xMarcio/cve.git
synced 2026-03-27 21:40:45 +01:00
740 B
740 B
CVE-2015-3622
Description
The _asn1_extract_der_octet function in lib/decoding.c in GNU Libtasn1 before 4.5 allows remote attackers to cause a denial of service (out-of-bounds heap read) via a crafted certificate.
POC
Reference
- http://packetstormsecurity.com/files/131711/libtasn1-Heap-Overflow.html
- http://seclists.org/fulldisclosure/2015/Apr/109