The (1) asn1readvaluetype and (2) asn1read_value functions in GNU Libtasn1 before 3.6 allows context-dependent attackers to cause a denial of service (NULL pointer dereference and crash) via a NULL value in an ivalue argument.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "libtasn1-6": "3.4-3ubuntu0.1", "libtasn1-6-dbg": "3.4-3ubuntu0.1", "libtasn1-6-dev": "3.4-3ubuntu0.1", "libtasn1-3-dev": "3.4-3ubuntu0.1", "libtasn1-bin": "3.4-3ubuntu0.1", "libtasn1-3-bin": "3.4-3ubuntu0.1" } ] }