Oval Definition:	oval:org.mitre.oval:def:21088
Revision Date: 2014-02-24 Version: 10 Title: RHSA-2012:0427: libtasn1 security update (Important) Description: The asn1_get_length_der function in decoding.c in GNU Libtasn1 before 2.12, as used in GnuTLS before 3.0.16 and other products, does not properly handle certain large length values, which allows remote attackers to cause a denial of service (heap memory corruption and application crash) or possibly have unspecified other impact via a crafted ASN.1 structure. Family: unix Class: patch Status: ACCEPTED Reference(s): CESA-2012:0427 CVE-2012-1569 RHSA-2012:0427-02 Platform(s): CentOS Linux 6 Red Hat Enterprise Linux 6 Product(s): libtasn1 Definition Synopsis Redhat 6 or Centos 6 release The operating system installed on the system is Red Hat Enterprise Linux 6 OR The operating system installed on the system is CentOS Linux 6.x AND Packages section libtasn1-tools is earlier than 0:2.3-3.el6_2.1 OR libtasn1 is earlier than 0:2.3-3.el6_2.1 OR libtasn1-devel is earlier than 0:2.3-3.el6_2.1
BACK