Wind River Support Network

HomeDefectsLIN7-8415
Fixed

LIN7-8415 : Security Advisory - libtasn1 - CVE-2017-10790

Created: Jul 13, 2017    Updated: Sep 8, 2018
Resolved Date: Aug 23, 2017
Found In Version: 7.0.0.25
Fix Version: 7.0.0.26
Severity: Standard
Applicable for: Wind River Linux 7
Component/s: Userspace

Description

The _asn1_check_identifier function in GNU Libtasn1 through 4.12 causes a NULL pointer dereference and crash when reading crafted input that triggers assignment of a NULL value within an asn1_node structure. It may lead to a remote denial of service attack.

https://nvd.nist.gov/vuln/detail/CVE-2017-10790

Other Downloads


CVEs


Live chat
Online