Advisories » MGASA-2015-0128

Updated libtasn1 packages fix CVE-2015-2806

Publication date: 03 Apr 2015
Type: security
Affected Mageia releases : 4
CVE: CVE-2015-2806

Description

Updated libtasn1 packages fix security vulnerability:

The libtasn1 library before version 4.4 is vulnerable to a two-byte stack
overflow in asn1_der_decoding (CVE-2015-2806).
                

References

• https://bugs.mageia.org/show_bug.cgi?id=15588
• http://openwall.com/lists/oss-security/2015/03/31/2
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2806

SRPMS

4/core

• libtasn1-3.6-1.1.mga4