gnutls/libtasn1

gnutls/libtasn1

Releases96

Frequency3 months 2 hours

Last Release 6 months ago

Stars11

The libtasn1 development site and repository https://www.gnu.org/software/libtasn1/

Log in to subscribe

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2025-13151 ↗	Jan 7, 2026Wednesday, 7 January 2026, 22:15	7.5 HIGH	—
Stack-based buffer overflow in libtasn1 version: v4.20.0. The function fails to validate the size of input data resulting in a buffer overflow in asn1_expend_octet_string.
CVE-2021-46848 ↗	Oct 24, 2022Monday, 24 October 2022, 14:15	9.1 CRITICAL	—
GNU Libtasn1 before 4.19.0 has an ETYPE_OK off-by-one array size check that affects asn1_encode_simple_der.
CVE-2018-1000654 ↗	Aug 20, 2018Monday, 20 August 2018, 19:31	—	7.1 HIGH
GNU Libtasn1-4.13 libtasn1-4.13 version libtasn1-4.13, libtasn1-4.12 contains a DoS, specifically CPU usage will reach 100% when running asn1Paser against the POC due to an issue in _asn1_expand_object_id(p_tree), after a long time, the program will be killed. This attack appears to be exploitable via parsing a crafted file.
CVE-2018-6003 ↗	Jan 22, 2018Monday, 22 January 2018, 20:29	7.5 HIGH	5 MEDIUM
An issue was discovered in the _asn1_decode_simple_ber function in decoding.c in GNU Libtasn1 before 4.13. Unlimited recursion in the BER decoder leads to stack exhaustion and DoS.