Security update for libtasn1
This update for libtasn1 fixes the following issues:
Security issues fixed:
- CVE-2018-1000654: Fixed a denial of service in the asn1 parser (bsc#1105435).
- CVE-2017-6891: Fixed a stack overflow in asn1_find_node() (bsc#1040621).
This update was imported from the SUSE:SLE-12-SP3:Update update project.
-
Submitted by
Michael Gorse (mgorse)
Fixed bugs
bnc#1105435
VUL-0: CVE-2018-1000654: libtasn1: contains a DoS, specifically CPU usage will reach 100% when running asn1Paser
bnc#1040621
VUL-0: CVE-2017-6891: gnutls,libtasn1: asn1_find_node() based stackoverflow
