Security update for libtasn1
This update for libtasn1 fixes the following issues:
- Malformed asn1 definitions could have caused a segmentation fault in the asn1 definition parser (bsc#961491)
- CVE-2015-3622: Fixed invalid read in octet string decoding (bsc#929414)
- CVE-2016-4008: Fixed infinite loop while parsing DER certificates (bsc#982779)
This update was imported from the SUSE:SLE-12:Update update project.
-
Submitted by
Michael Gorse (mgorse)
Fixed bugs
bnc#961491
VUL-1: libtasn1, gnutls: malformed asn1 definition causes segfault
bnc#929414
VUL-1: CVE-2015-3622: libtasn1, gnutls: invalid read in octet string decoding
bnc#982779
VUL-0: CVE-2016-4008: libtasn1: infinite loop while parsing DER certificates
