This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Free Software Foundation Inc. First view 2004-07-07
Product libtasn1 Last view 2006-02-10
Version Type Application
Update  
Edition  
Language  
Sofware Edition  
Target Software  
Target Hardware  
Other  

Activity : Overall

COMMON PLATFORM ENUMERATION: Repartition per Version

CPE Name Affected CVE
cpe:2.3:a:free_software_foundation_inc.:libtasn1:0.2.2:*:*:*:*:*:*:* 2
cpe:2.3:a:free_software_foundation_inc.:libtasn1:0.1.1:*:*:*:*:*:*:* 2
cpe:2.3:a:free_software_foundation_inc.:libtasn1:0.2.0:*:*:*:*:*:*:* 2
cpe:2.3:a:free_software_foundation_inc.:libtasn1:0.2.3:*:*:*:*:*:*:* 2
cpe:2.3:a:free_software_foundation_inc.:libtasn1:0.2.4:*:*:*:*:*:*:* 2
cpe:2.3:a:free_software_foundation_inc.:libtasn1:0.2.1:*:*:*:*:*:*:* 2
cpe:2.3:a:free_software_foundation_inc.:libtasn1:0.1.0:*:*:*:*:*:*:* 2
cpe:2.3:a:free_software_foundation_inc.:libtasn1:0.2.5:*:*:*:*:*:*:* 2
cpe:2.3:a:free_software_foundation_inc.:libtasn1:0.2.6:*:*:*:*:*:*:* 2
cpe:2.3:a:free_software_foundation_inc.:libtasn1:0.2.13:*:*:*:*:*:*:* 1
cpe:2.3:a:free_software_foundation_inc.:libtasn1:0.2.12:*:*:*:*:*:*:* 1
cpe:2.3:a:free_software_foundation_inc.:libtasn1:0.2.11:*:*:*:*:*:*:* 1
cpe:2.3:a:free_software_foundation_inc.:libtasn1:0.2.10:*:*:*:*:*:*:* 1
cpe:2.3:a:free_software_foundation_inc.:libtasn1:0.2.8:*:*:*:*:*:*:* 1
cpe:2.3:a:free_software_foundation_inc.:libtasn1:0.2.7:*:*:*:*:*:*:* 1
cpe:2.3:a:free_software_foundation_inc.:libtasn1:0.2.16:*:*:*:*:*:*:* 1
cpe:2.3:a:free_software_foundation_inc.:libtasn1:0.2.15:*:*:*:*:*:*:* 1
cpe:2.3:a:free_software_foundation_inc.:libtasn1:0.2.14:*:*:*:*:*:*:* 1
cpe:2.3:a:free_software_foundation_inc.:libtasn1:0.1.2:*:*:*:*:*:*:* 1
cpe:2.3:a:free_software_foundation_inc.:libtasn1:0.2.9:*:*:*:*:*:*:* 1
cpe:2.3:a:free_software_foundation_inc.:libtasn1:0.2.17:*:*:*:*:*:*:* 1
cpe:2.3:a:free_software_foundation_inc.:libtasn1:0.1:*:*:*:*:*:*:* 1

Related : CVE

  Date Alert Description
7.5 2006-02-10 CVE-2006-0645

Tiny ASN.1 Library (libtasn1) before 0.2.18, as used by (1) GnuTLS 1.2.x before 1.2.10 and 1.3.x before 1.3.4, and (2) GNU Shishi, allows attackers to crash the DER decoder and possibly execute arbitrary code via "out-of-bounds access" caused by invalid input, as demonstrated by the ProtoVer SSL test suite.

10 2004-07-07 CVE-2004-0401

Unknown vulnerability in libtasn1 0.1.x before 0.1.2, and 0.2.x before 0.2.7, related to the DER parsing functions.

Oval Markup Language : Definitions

OvalID Name
oval:org.mitre.oval:def:10540 Tiny ASN.1 Library (libtasn1) before 0.2.18, as used by (1) GnuTLS 1.2.x befo...

Open Source Vulnerability Database (OSVDB)

id Description
23054 GnuTLS libtasn1 DER Decoding Overflow DoS
15126 libtASN1 DER Parsing Function Unspecified Issue

OpenVAS Exploits

id Description
2009-10-10 Name : SLES9: Security update for gnutls
File : nvt/sles9p5016462.nasl
2008-09-24 Name : Gentoo Security Advisory GLSA 200602-08 (libtasn1)
File : nvt/glsa_200602_08.nasl
2008-01-17 Name : Debian Security Advisory DSA 985-1 (libtasn1-2)
File : nvt/deb_985_1.nasl
2008-01-17 Name : Debian Security Advisory DSA 986-1 (gnutls11)
File : nvt/deb_986_1.nasl

Nessus® Vulnerability Scanner

id Description
2006-10-14 Name: The remote Debian host is missing a security-related update.
File: debian_DSA-985.nasl - Type: ACT_GATHER_INFO
2006-10-14 Name: The remote Debian host is missing a security-related update.
File: debian_DSA-986.nasl - Type: ACT_GATHER_INFO
2006-07-05 Name: The remote CentOS host is missing one or more security updates.
File: centos_RHSA-2006-0207.nasl - Type: ACT_GATHER_INFO
2006-03-13 Name: The remote Ubuntu host is missing one or more security-related patches.
File: ubuntu_USN-251-1.nasl - Type: ACT_GATHER_INFO
2006-02-17 Name: The remote Gentoo host is missing one or more security-related patches.
File: gentoo_GLSA-200602-08.nasl - Type: ACT_GATHER_INFO
2006-02-14 Name: The remote Mandrake Linux host is missing one or more security updates.
File: mandrake_MDKSA-2006-039.nasl - Type: ACT_GATHER_INFO
2006-02-11 Name: The remote Fedora Core host is missing a security update.
File: fedora_2006-107.nasl - Type: ACT_GATHER_INFO
2006-02-11 Name: The remote Red Hat host is missing one or more security updates.
File: redhat-RHSA-2006-0207.nasl - Type: ACT_GATHER_INFO