CVE-2015-2806

CWE-119 — Buffer Overflow8 documents8 sources
Severity
10.0CRITICAL
EPSS
9.3%
top 7.23%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
GNU Libtasn1Canonical Ubuntu LinuxDebian Debian Linux+1 more
Timeline
PublishedApr 10
Latest updateMay 14

Description

Stack-based buffer overflow in asn1_der_decoding in libtasn1 before 4.4 allows remote attackers to have unspecified impact via unknown vectors.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages2 packages

â–¶Debianlibtasn1-6< 4.2-3+3
â–¶NVDgnu/libtasn14.3

Also affects: Debian Linux 7.0, Fedora 20, 21, 22, Ubuntu Linux 10.04, 12.04, 14.04, 14.10

🔴Vulnerability Details

3
GHSA
GHSA-72cq-2586-ch4w: Stack-based buffer overflow in asn1_der_decoding in libtasn1 before 4↗2022-05-14
â–¶
OSV
CVE-2015-2806: Stack-based buffer overflow in asn1_der_decoding in libtasn1 before 4↗2015-04-10
â–¶
CVEList
CVE-2015-2806: Stack-based buffer overflow in asn1_der_decoding in libtasn1 before 4↗2015-04-10
â–¶

📋Vendor Advisories

3
Ubuntu
Libtasn1 vulnerability↗2015-04-08
â–¶
Red Hat
libtasn1: stack overflow in asn1_der_decoding↗2015-03-26
â–¶
Debian
CVE-2015-2806: libtasn1-6 - Stack-based buffer overflow in asn1_der_decoding in libtasn1 before 4.4 allows r...↗2015
â–¶

💬Community

1
Bugzilla
CVE-2015-2806 libtasn1: stack overflow in asn1_der_decoding↗2015-03-30
â–¶
CVE-2015-2806 (CRITICAL CVSS 10) | Stack-based buffer overflow in asn1 | cvebase.io