14 lines
1023 B
JSON
14 lines
1023 B
JSON
{
|
|
"id": "openEuler-SA-2022-2030",
|
|
"url": "https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2022-2030",
|
|
"title": "An update for libtasn1 is now available for openEuler-20.03-LTS-SP1,openEuler-20.03-LTS-SP3 and openEuler-22.03-LTS",
|
|
"severity": "Critical",
|
|
"description": "Libtasn1 is the ASN.1 library used by GnuTLS, p11-kit and some other packages.The goal of this implementation is to be highly portable, and only require an ANSI C99 platform.This library provides Abstract Syntax Notation One (ASN.1,as specified by the X.680 ITU-T recommendation) parsing and structures management,and Distinguished Encoding Rules (DER, as per X.690) encoding and decoding functions.\r\n\r\nSecurity Fix(es):\r\n\r\nGNU Libtasn1 before 4.19.0 has an ETYPE_OK off-by-one array size check that affects asn1_encode_simple_der.(CVE-2021-46848)",
|
|
"cves": [
|
|
{
|
|
"id": "CVE-2021-46848",
|
|
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-46848",
|
|
"severity": "Critical"
|
|
}
|
|
]
|
|
} |