CVE-2017-6891: Buffer Overflow
First published: Mon May 22 2017(Updated: )
Two errors in the "asn1_find_node()" function (lib/parser_aux.c) within GnuTLS libtasn1 version 4.10 can be exploited to cause a stacked-based buffer overflow by tricking a user into processing a specially crafted assignments file via the e.g. asn1Coding utility.
Credit: PSIRT-CNA@flexerasoftware.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Libtasn1 | =4.10 | |
| Debian | =8.0 | |
| Apache Bookkeeper | =4.12.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://git.savannah.gnu.org/gitweb/?p=libtasn1.git;a=commit;h=5520704d075802df25ce4ffccc010ba1641bd484
- http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00018.html
- http://www.debian.org/security/2017/dsa-3861
- http://www.securityfocus.com/bid/98641
- http://www.securitytracker.com/id/1038619
- https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b@%3Cissues.bookkeeper.apache.org%3E
- https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4@%3Cissues.bookkeeper.apache.org%3E
- https://secuniaresearch.flexerasoftware.com/advisories/76125/
- https://secuniaresearch.flexerasoftware.com/secunia_research/2017-11/
- https://security.gentoo.org/glsa/201710-11
- http://git.savannah.gnu.org/gitweb/?p=libtasn1.git%3Ba=commit%3Bh=5520704d075802df25ce4ffccc010ba1641bd484
- https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E
- https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E
Frequently Asked Questions
What is the severity of CVE-2017-6891?
CVE-2017-6891 has a high severity due to the potential for remote code execution resulting from a stack-based buffer overflow.
How do I fix CVE-2017-6891?
To fix CVE-2017-6891, update GnuTLS libtasn1 to a version that is not affected, specifically newer than 4.10.
Which versions of GnuTLS are affected by CVE-2017-6891?
CVE-2017-6891 affects GnuTLS libtasn1 version 4.10.
Does CVE-2017-6891 affect any other systems or software?
Yes, CVE-2017-6891 also affects Debian Linux versions prior to the security patches and Apache Bookkeeper version 4.12.1.
What specific exploitation method is associated with CVE-2017-6891?
CVE-2017-6891 can be exploited by tricking a user into processing a specially crafted assignments file with the asn1Coding utility.
- agent/type
- agent/remedy
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/references
- agent/last-modified-date
- agent/author
- agent/event
- agent/first-publish-date
- agent/description
- agent/source
- agent/weakness
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/gnu
- canonical/centos libtasn1
- version/centos libtasn1/4.10
- vendor/debian
- canonical/debian
- version/debian/8.0
- vendor/apache
- canonical/apache bookkeeper
- version/apache bookkeeper/4.12.1