CVE-2016-4008

Severity

43%

Complexity

86%

Confidentiality

48%

The _asn1_extract_der_octet function in lib/decoding.c in GNU Libtasn1 before 4.8, when used without the ASN1_DECODE_FLAG_STRICT_DER flag, allows remote attackers to cause a denial of service (infinite recursion) via a crafted certificate.

CVSS 3.0 Base Score 5.9. CVSS Attack Vector: network. CVSS Attack Complexity: high. CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H).

CVSS 2.0 Base Score 4.3. CVSS Attack Vector: network. CVSS Attack Complexity: medium. CVSS Vector: (AV:N/AC:M/Au:N/C:N/I:N/A:P).

Overview

First reported 8 years ago

2016-05-05 18:59:00

Last updated 6 years ago

2018-10-30 16:27:00

Affected Software

Canonical Ubuntu Linux 12.04 LTS

12.04

Canonical Ubuntu Linux 14.04 LTS (Long-Term Support)

14.04

Canonical Ubuntu Linux 15.10

15.10

Canonical Ubuntu Linux 16.04 LTS (Long-Term Support)

16.04

OpenSUSE 13.2

13.2

Fedora 22

22

Fedora Project Fedora 23

23

Fedora 24

24

References

http://git.savannah.gnu.org/gitweb/?p=libtasn1.git;a=commit;h=a6e0a0b58f5cdaf4e9beca5bce69c09808cbb625

http://git.savannah.gnu.org/gitweb/?p=libtasn1.git;a=commit;h=f435825c0f527a8e52e6ffbc3ad0bc60531d537e

FEDORA-2016-048ffb6235

FEDORA-2016-383b8250e6

FEDORA-2016-96bfd9e873

openSUSE-SU-2016:1567

openSUSE-SU-2016:1674

DSA-3568

[oss-security] 20160411 Infinite loops parsing malicious DER certificates in libtasn1 4.7

USN-2957-1

USN-2957-2

[help-libtasn1] 20160411 GNU Libtasn1 4.8 released

GLSA-201703-05

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.