Package: libtasn1-6 / 4.2-3+deb8u3

Metadata

Package Version Patches format
libtasn1-6 4.2-3+deb8u3 3.0 (quilt)

Patch series

view the series file
Patch File delta Description
20_CVE 2015 2806.diff | (download)

lib/parser_aux.c | 4 2 + 2 - 0 !
lib/parser_aux.h | 5 3 + 2 - 0 !
2 files changed, 5 insertions(+), 4 deletions(-)

 [patch] increased size of ltostr_max_size to account for sign and
 null byte
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

This address an overflow found by Hanno Böck in DER decoding.

20_CVE 2015 3622.diff | (download)

lib/decoding.c | 3 2 + 1 - 0 !
1 file changed, 2 insertions(+), 1 deletion(-)

 [patch] _asn1_extract_der_octet: prevent past of boundary access
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Reported by Hanno Böck.

_asn1_extract_der_octet catch invalid input cases ea.patch | (download)

lib/decoding.c | 9 8 + 1 - 0 !
1 file changed, 8 insertions(+), 1 deletion(-)

 [patch] _asn1_extract_der_octet: catch invalid input cases early

That is, check the calculated lengths for validity prior
to entering a loop. This avoids an infinite recursion.
Reported by Pascal Cuoq.

_asn1_extract_der_octet properly account the bytes r.patch | (download)

lib/decoding.c | 12 8 + 4 - 0 !
1 file changed, 8 insertions(+), 4 deletions(-)

 [patch] _asn1_extract_der_octet: properly account the bytes read
 through indefinite encodings

This prevents infinite recursions in the function loop.
Reported by Pascal Cuoq.

20_CVE 2017 6891.patch | (download)

lib/parser_aux.c | 6 6 + 0 - 0 !
1 file changed, 6 insertions(+)

---