Advisories ยป MGASA-2018-0121

Updated libtasn1 packages fix security vulnerability

Publication date: 08 Feb 2018
Type: security
Affected Mageia releases : 6
CVE: CVE-2017-10790 , CVE-2018-6003

Description

It was discovered that Libtasn1 incorrectly handled certain files. If a
user were tricked into opening a crafted file, an attacker could possibly
use this to cause a denial of service (CVE-2017-10790).

It was discovered that Libtasn1 incorrectly handled certain inputs. An
attacker could possibly use this to cause Libtasn1 to hang, resulting in a
denial of service (CVE-2018-6003).
                

References

SRPMS

6/core