Vigil@nce - GNU Libtasn1: multiple vulnerabilities
June 2014 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker can use several vulnerabilities of GNU Libtasn1.
Impacted products: Fedora, MBS, MES, openSUSE, RHEL, Slackware,
SUSE Linux Enterprise Desktop, SLES, Unix (platform)
Severity: 2/4
Creation date: 30/05/2014
DESCRIPTION OF THE VULNERABILITY
Several vulnerabilities were announced in GNU Libtasn1.
An attacker can dereference a NULL pointer in
gnutls_x509_dn_oid_name, in order to trigger a denial of service.
[severity:2/4; 1101734, CVE-2014-3465]
An attacker can force a read at an invalid memory address, in
order to trigger a denial of service. [severity:2/4; 1102022,
CVE-2014-3467]
An attacker can generate a memory corruption via
asn1_get_bit_der(), in order to trigger a denial of service, and
possibly to execute code. [severity:2/4; 1102323, CVE-2014-3468]
An attacker can dereference a NULL pointer in
asn1_read_value_type(), in order to trigger a denial of service.
[severity:2/4; 1102329, CVE-2014-3469]
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/GNU-Libtasn1-multiple-vulnerabilities-14822