|
|
Log in / Subscribe / Register

Mageia alert MGASA-2014-0247 (libtasn1)



From:
    	      Mageia Updates <buildsystem-daemon@mageia.org> 


To:
    	      updates-announce@ml.mageia.org 


Subject:
    	      [updates-announce] MGASA-2014-0247: Updated libtasn1 packages fix CVE-2014-3467-9 


Date:
    	      Mon, 2 Jun 2014 20:44:41 +0200


Message-ID:
    	      <20140602184442.15AAF48BD2@valstar.mageia.org>


MGASA-2014-0247 - Updated libtasn1 packages fix CVE-2014-3467-9

Publication date: 02 Jun 2014
URL: http://advisories.mageia.org/MGASA-2014-0247.html
Type: security
Affected Mageia releases: 3, 4
CVE: CVE-2014-3467,
     CVE-2014-3468,
     CVE-2014-3469

Description:
Updated libtasn1 packages fix security vulnerabilities:

Multiple buffer boundary check issues were discovered in libtasn1 library,
causing it to read beyond the boundary of an allocated buffer.  An untrusted
ASN.1 input could cause an application using the library to crash
(CVE-2014-3467).

It was discovered that libtasn1 library function asn1_get_bit_der() could
incorrectly report negative bit length of the value read from ASN.1 input.
This could possibly lead to an out of bounds access in an application using
libtasn1, for example in case if application tried to terminate read value
with NUL byte (CVE-2014-3468).

A NULL pointer dereference flaw was found in libtasn1's
asn1_read_value_type() / asn1_read_value() function. If an application
called the function with a NULL value for an ivalue argument to determine
the amount of memory needed to store data to be read from the ASN.1 input,
libtasn1 could incorrectly attempt to dereference the NULL pointer, causing
an application using the library to crash (CVE-2014-3469).

References:
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2014-3467
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2014-3468
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2014-3469
- http://lists.gnu.org/archive/html/help-libtasn1/2014-05/m...
- https://bugs.mageia.org/show_bug.cgi?id=13456
- http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3467
- http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3468
- http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3469

SRPMS:
- 4/core/libtasn1-3.6-1.mga4
- 3/core/libtasn1-3.6-1.mga3
to post comments


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds