Advisories » MGASA-2026-0007

Updated libtasn1 packages fix security vulnerability

Publication date: 12 Jan 2026
Modification date: 12 Jan 2026
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-13151

Description

Stack-based buffer overflow in libtasn1 version: v4.20.0. The function
fails to validate the size of input data resulting in a buffer overflow
in asn1_expend_octet_string. (CVE-2025-13151)
                

References

• https://bugs.mageia.org/show_bug.cgi?id=34957
• https://www.openwall.com/lists/oss-security/2026/01/08/5
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-13151

SRPMS

9/core

• libtasn1-4.21.0-1.mga9