CVE-2018-1000654

GNU Libtasn1-4.13 libtasn1-4.13 version libtasn1-4.13, libtasn1-4.12 contains a DoS, specifically CPU usage will reach 100% when running asn1Paser against the POC due to an issue in _asn1_expand_object_id(p_tree), after a long time, the program will be killed. This attack appears to be exploitable via parsing a crafted file.

Published : 2018-08-20 19:31 Updated : 2019-10-03 00:03

7.1
CVSS Score More info
Score 7.1 / 10
7.1
Vendor Product Version URI
Gnu Libtasn1 4.12 cpe:/a:gnu:libtasn1:4.12
Gnu Libtasn1 4.13 cpe:/a:gnu:libtasn1:4.13
  1. Gnu (1) Search CVE
    1. Libtasn1 (2) Search CVE
      1. 4.12
      2. 4.13

CWE

There is no CWE for this CVE.

History of changes

Date Event
2019-10-03 00:03
2019-06-05 15:29
2019-06-03 12:29
2018-10-30 18:47
2018-08-28 10:29
2018-08-20 19:31

New CVE