{"id":"MGASA-2015-0200","summary":"Updated libtasn1 packages fix CVE-2015-3622","details":"Updated libtasn1 packages fix security vulnerability:\n\nA malformed certificate input could cause a heap overflow read in the DER\ndecoding functions of Libtasn1. The heap overflow happens in the function\n_asn1_extract_der_octet() (CVE-2015-3622).\n","modified":"2026-04-16T01:47:40.030889740Z","published":"2015-05-06T17:44:06Z","upstream":["CVE-2015-3622"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2015-0200.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=15804"},{"type":"WEB","url":"https://blog.fuzzing-project.org/9-Heap-overflow-invalid-read-in-Libtasn1-TFPA-0052015.html"},{"type":"WEB","url":"http://openwall.com/lists/oss-security/2015/04/30/6"}],"affected":[{"package":{"name":"libtasn1","ecosystem":"Mageia:4","purl":"pkg:rpm/mageia/libtasn1?arch=source&distro=mageia-4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.6-1.2.mga4"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2015-0200.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}