#VU7690 Out-of-bounds read in libtASN1 - CVE-2015-3622


Vulnerability identifier: #VU7690

Vulnerability risk: Low

CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2015-3622

CWE-ID: CWE-125

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
libtASN1
Universal components / Libraries / Libraries used by multiple products

Vendor: GNU

Description
The vulnerability allows a remote attacker to cause DoS conditions on the target system.

The weakness exists due to an error in the _asn1_extract_der_octet function in lib/decoding.c. A remote attacker can send a specially crafted certificate, trigger out-of-bounds heap read and cause the application to crash.

Successful exploitation of the vulnerability results in denial of service.

Mitigation
Update to version 4.5 or later.

Vulnerable software versions

libtASN1: 0.1.0 - 4.4

External links
https://git.savannah.gnu.org/gitweb/?p=libtasn1.git;a=commit;h=4d4f992826a4962790ecd0cce6fbba4a415ce149

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Red Hat update for GNU libtasn1
Fedora EPEL 7 update for mingw-libtasn1
Debian update for libtasn1-6
Gentoo update for libtasn1
Out-of-bounds read in libtasn1 (Alpine package)
Ubuntu update for Libtasn1
Arch Linux update for libtasn1
Fedora 21 update for libtasn1
Fedora 22 update for libtasn1