CNNVD-202601-1142 Information
Jan 07, 2026
cve
CNNVD ID
CNNVD-202601-1142
Related CVE
- CNNVD Published: 2026-01-07
Description (Chinese)
libtasn1是gnutls开源的一个小型的 ASN.1 库。 libtasn1 v4.20.0版本存在安全漏洞,该漏洞源于asn1_expend_octet_string函数未验证输入数据大小,可能导致基于栈的缓冲区溢出。
Description (English)
libtasn1 is a small ASN.1 library of gnutls open source. The libtasn1 v4.20.0 version has a security loophole, which originates from the fact that the input data size is not verified by the asn1 expend oct string function, which may result in an outburst-based buffer zone.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
gnutls
Published
2026-01-07
Last Modified
2026-02-24
References
https://gitlab.com/gnutls/libtasn1 https://gitlab.com/gnutls/libtasn1/-/merge_requests/121
Share on: