製品・ソフトウェアに関する情報

JVN脆弱性詳細

GNU Libtasn1 の lib/decoding.c の _asn1_extract_der_octet 関数におけるサービス運用妨害 (DoS) の脆弱性

Title	GNU Libtasn1 の lib/decoding.c の _asn1_extract_der_octet 関数におけるサービス運用妨害 (DoS) の脆弱性
Summary	GNU Libtasn1 の lib/decoding.c の _asn1_extract_der_octet 関数は、ASN1_DECODE_FLAG_STRICT_DER フラグなしで使用される場合、サービス運用妨害 (無限再帰) 状態にされる脆弱性が存在します。
Possible impacts	第三者により、巧妙に細工された証明書を介して、サービス運用妨害 (無限再帰) 状態にされる可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	April 11, 2016, midnight
Registration Date	May 17, 2016, 2:52 p.m.
Last Update	May 17, 2016, 2:52 p.m.

CVSS3.0 : 警告
Score	5.9
Vector	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

CVSS2.0 : 警告
Score	4.3
Vector	AV:N/AC:M/Au:N/C:N/I:N/A:P

Affected System

GNU Project

GNU Libtasn1 4.8 未満

Fedora Project

Fedora 22

Fedora 23

Fedora 24

Canonical

Ubuntu 12.04 LTS

Ubuntu 14.04 LTS

Ubuntu 15.10

Ubuntu 16.04 LTS

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2016-4008	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4008
National Vulnerability Database (NVD)
2	CVE-2016-4008	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-4008

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-399	https://jvndb.jvn.jp/ja/cwe/CWE-399.html

ベンダー情報

No	Name	URL
Fedora Update Notification
1	FEDORA-2016-048ffb6235	https://lists.fedoraproject.org/pipermail/package-announce/2016-April/182299.html
2	FEDORA-2016-383b8250e6	https://lists.fedoraproject.org/pipermail/package-announce/2016-April/182907.html
3	FEDORA-2016-96bfd9e873	https://lists.fedoraproject.org/pipermail/package-announce/2016-April/183221.html
GNU Project
4	GNU Libtasn1 4.8 released	https://lists.gnu.org/archive/html/help-libtasn1/2016-04/msg00009.html
GNU Savannah
5	_asn1_extract_der_octet: catch invalid input cases early	http://git.savannah.gnu.org/gitweb/?p=libtasn1.git;a=commit;h=f435825c0f527a8e52e6ffbc3ad0bc60531d537e
6	_asn1_extract_der_octet: properly account the bytes read through indefinite encodings	http://git.savannah.gnu.org/gitweb/?p=libtasn1.git;a=commit;h=a6e0a0b58f5cdaf4e9beca5bce69c09808cbb625
Ubuntu Security Notice
7	USN-2957-1	http://www.ubuntu.com/usn/USN-2957-1/
8	USN-2957-2	http://www.ubuntu.com/usn/USN-2957-2/

Change Log

No	Changed Details	Date of change
0	[2016年05月17日] 掲載	Feb. 17, 2018, 10:37 a.m.

NVD Vulnerability Information

CVE-2016-4008

Summary	The _asn1_extract_der_octet function in lib/decoding.c in GNU Libtasn1 before 4.8, when used without the ASN1_DECODE_FLAG_STRICT_DER flag, allows remote attackers to cause a denial of service (infinite recursion) via a crafted certificate.
Publication Date	May 6, 2016, 3:59 a.m.
Registration Date	Jan. 26, 2021, 2:11 p.m.
Last Update	Nov. 21, 2024, 11:51 a.m.

Affected software configurations

Configuration1	or higher	or less	more than	less than
cpe:2.3:o:canonical:ubuntu_linux:12.04::::lts:::
cpe:2.3:o:canonical:ubuntu_linux:16.04::::lts:::
cpe:2.3:o:canonical:ubuntu_linux:15.10:::::::*
cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::

Configuration2		or higher	or less	more than	less than
cpe:2.3:o:opensuse:opensuse:13.2:::::::*

Configuration3		or higher	or less	more than	less than
cpe:2.3:a:gnu:libtasn1::::::::			4.7

Configuration4	or higher	or less	more than	less than
cpe:2.3:o:fedoraproject:fedora:22:::::::*
cpe:2.3:o:fedoraproject:fedora:24:::::::*
cpe:2.3:o:fedoraproject:fedora:23:::::::*

Related information, measures and tools

No	URL	refsource	タグ
1	http://git.savannah.gnu.org/gitweb/?p=libtasn1.git%3Ba=commit%3Bh=a6e0a0b58f5cdaf4e9beca5bce69c09808cbb625
2	http://git.savannah.gnu.org/gitweb/?p=libtasn1.git%3Ba=commit%3Bh=a6e0a0b58f5cdaf4e9beca5bce69c09808cbb625
3	http://git.savannah.gnu.org/gitweb/?p=libtasn1.git%3Ba=commit%3Bh=f435825c0f527a8e52e6ffbc3ad0bc60531d537e
4	http://git.savannah.gnu.org/gitweb/?p=libtasn1.git%3Ba=commit%3Bh=f435825c0f527a8e52e6ffbc3ad0bc60531d537e
5	http://lists.fedoraproject.org/pipermail/package-announce/2016-April/182299.html
6	http://lists.fedoraproject.org/pipermail/package-announce/2016-April/182299.html
7	http://lists.fedoraproject.org/pipermail/package-announce/2016-April/182907.html
8	http://lists.fedoraproject.org/pipermail/package-announce/2016-April/182907.html
9	http://lists.fedoraproject.org/pipermail/package-announce/2016-April/183221.html
10	http://lists.fedoraproject.org/pipermail/package-announce/2016-April/183221.html
11	http://lists.opensuse.org/opensuse-updates/2016-06/msg00047.html
12	http://lists.opensuse.org/opensuse-updates/2016-06/msg00047.html
13	http://lists.opensuse.org/opensuse-updates/2016-06/msg00097.html
14	http://lists.opensuse.org/opensuse-updates/2016-06/msg00097.html
15	http://www.debian.org/security/2016/dsa-3568
16	http://www.debian.org/security/2016/dsa-3568
17	http://www.openwall.com/lists/oss-security/2016/04/11/3
18	http://www.openwall.com/lists/oss-security/2016/04/11/3
19	http://www.ubuntu.com/usn/USN-2957-1
20	http://www.ubuntu.com/usn/USN-2957-1
21	http://www.ubuntu.com/usn/USN-2957-2
22	http://www.ubuntu.com/usn/USN-2957-2
23	https://lists.gnu.org/archive/html/help-libtasn1/2016-04/msg00009.html
24	https://lists.gnu.org/archive/html/help-libtasn1/2016-04/msg00009.html
25	https://security.gentoo.org/glsa/201703-05
26	https://security.gentoo.org/glsa/201703-05

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-399	リソース管理の問題	https://cwe.mitre.org/data/definitions/399.html