mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-06 02:31:38 +00:00
729 B
729 B
CVE-2015-3622
Description
The _asn1_extract_der_octet function in lib/decoding.c in GNU Libtasn1 before 4.5 allows remote attackers to cause a denial of service (out-of-bounds heap read) via a crafted certificate.
POC
Reference
- http://packetstormsecurity.com/files/131711/libtasn1-Heap-Overflow.html
- http://seclists.org/fulldisclosure/2015/Apr/109