[gnutls-devel] libtasn1 | Detecting Bug in libtasn1-4.13 by fuzzing. (#4)

Development of GNU's TLS library gnutls-devel at lists.gnutls.org
Wed Jan 2 21:34:10 CET 2019


@nmav Even though asn1Parser is the program used to demonstrate the vulnerability, that program just exercises the library. The vulnerability still exists in the lib itself and there could be an attack vector if a client of the lib could be induced to generate asn data that triggers it.

-- 
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/libtasn1/issues/4#note_128461464
You're receiving this email because of your account on gitlab.com.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20190102/1732578a/attachment.html>


More information about the Gnutls-devel mailing list