The appendutf8value function in the DN decoder (dn.c) in Libksba before 1.3.3 allows remote attackers to cause a denial of service (out-of-bounds read) by clearing the high bit of the byte after invalid utf-8 encoded data.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "libksba-dev": "1.3.0-3ubuntu0.14.04.2", "libksba8-dbgsym": "1.3.0-3ubuntu0.14.04.2", "libksba8": "1.3.0-3ubuntu0.14.04.2" } ] }