Integer Overflow Vulnerability in GNU Libtasn1 Affects GnuTLS
CVE-2014-3467

Currently unrated

Key Information:

Vendor

Gnu
Status
Gnutls
Libtasn1
Vendor
CVE Published:
5 June 2014

What is CVE-2014-3467?

Multiple unspecified vulnerabilities in the DER decoder of GNU Libtasn1 before version 3.6 can be exploited by remote attackers to trigger a denial of service condition. This is achieved through the use of specially crafted ASN.1 data, which can lead to an out-of-bounds read during processing, resulting in crashes or unintended behavior of applications relying on GnuTLS.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://secunia.com/advisories/60320
third-party-advisoryx_refsource_SECUNIA
http://www.debian.org/security/2014/dsa-3056
vendor-advisoryx_refsource_DEBIAN
http://www.novell.com/support/kb/doc.php?id=7015302
x_refsource_CONFIRM

EPSS Score

6% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.