CVE-2014-3469
Description
The (1) asn1_read_value_type and (2) asn1_read_value functions in GNU Libtasn1 before 3.6 allows context-dependent attackers to cause a denial of service (NULL pointer dereference and crash) via a NULL value in an ivalue argument.
Risk Information
Base Score
9.8
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
8.667
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Library to manage ASN.1 structures (USN-2294-1) libtasn1-6_3.4-3ubuntu0.3_i386.deb | Linux |
| Library to manage ASN.1 structures (USN-2294-1) libtasn1-6_3.4-3ubuntu0.3_amd64.deb | Linux |
| Libtasn1 update (CESA-2014:0596) libtasn1-2.3-6.el6_5.i686.rpm | Linux |
| Libtasn1 update (CESA-2014:0596) libtasn1-2.3-6.el6_5.x86_64.rpm | Linux |
| Libtasn1 update (CESA-2014:0596) libtasn1-devel-2.3-6.el6_5.i686.rpm | Linux |
| Libtasn1 update (CESA-2014:0596) libtasn1-devel-2.3-6.el6_5.x86_64.rpm | Linux |
| Libtasn1 update (CESA-2014:0596) libtasn1-tools-2.3-6.el6_5.i686.rpm | Linux |
| Libtasn1 update (CESA-2014:0596) libtasn1-tools-2.3-6.el6_5.x86_64.rpm | Linux |
| (RHSA-2014:0596) Moderate: libtasn1 security update libtasn1-2.3-6.el6_5.i686.rpm | Linux |
| (RHSA-2014:0596) Moderate: libtasn1 security update libtasn1-2.3-6.el6_5.x86_64.rpm | Linux |
| (RHSA-2014:0596) Moderate: libtasn1 security update libtasn1-devel-2.3-6.el6_5.i686.rpm | Linux |
| (RHSA-2014:0596) Moderate: libtasn1 security update libtasn1-devel-2.3-6.el6_5.x86_64.rpm | Linux |
| (RHSA-2014:0596) Moderate: libtasn1 security update libtasn1-tools-2.3-6.el6_5.i686.rpm | Linux |
| (RHSA-2014:0596) Moderate: libtasn1 security update libtasn1-tools-2.3-6.el6_5.x86_64.rpm | Linux |
| NULL Pointer Dereference Vulnerability (CVE-2014-3469) | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234