CVE-2021-46848
CVE Details
Last Update
9/5/24
NIST CVE Summary
GNU Libtasn1 before 4.19.0 has an ETYPE_OK off-by-one array size check that affects asn1_encode_simple_der.
Our Official Summary
This is a vulnerability reported in GNU Libtasn1 before version 4.19.0, a library used to manage the ASN.1 data structure. This vulnerability is caused by an off-by-one array size check issue, leading to an out-of-bounds read. Impacting systems using GNU Libtasn1 before 4.19.0. Waiting on an upstream fix.
CVE Severity
Status
Ongoing
Affected Products & Versions
- Palette VerteX 4.4.14
Revision History
- 1.0 09/05/2024 Initial Publication
- 2.0 09/05/2024 Added Palette VerteX 4.4.14 to Affected Products