CVE-2018-6003

An issue was discovered in the _asn1_decode_simple_ber function in decoding.c in GNU Libtasn1 before 4.13. Unlimited recursion in the BER decoder leads to stack exhaustion and DoS.

Published : 2018-01-22 20:29 Updated : 2019-10-03 00:03

5.0
CVSS Score More info
Score 5.0 / 10
5.0
Vendor Product Version URI
Gnu Libtasn1 4.12 cpe:/a:gnu:libtasn1:4.12
Fedoraproject Fedora 26 cpe:/o:fedoraproject:fedora:26
Fedoraproject Fedora 27 cpe:/o:fedoraproject:fedora:27
  1. Fedoraproject (1) Search CVE
    1. Fedora (2) Search CVE
      1. 26
      2. 27
  2. Gnu (1) Search CVE
    1. Libtasn1 (1) Search CVE
      1. 4.12

CWE

ID Name Description Links
CWE-674 Uncontrolled Recursion The product does not properly control the amount of recursion that takes place, which consumes excessive resources, such as allocated memory or the program stack. CVE

History of changes

Date Event
2019-10-03 00:03
2018-02-09 18:08
2018-02-09 02:29
2018-01-22 20:29

New CVE