Note:
This project will be discontinued after December 13, 2021. [more]
2017-08-20
The asn1f_lookup_symbol_impl function in asn1fix_retrieve.c in libasn1fix.a in asn1c 0.9.28 allows remote attackers to cause a denial of service (segmentation fault) via a crafted .asn1 file.
| Products | Asn1c |
| Type | Improper Restriction of Operations within the Bounds of a Memory Buffer (CWE-119) |
| First patch | - None (likely due to unavailable code) |
| Links | https://drive.google.com/open?id=0B9DojFnTUSNGd05zSHI1RmpKQjQ |