CVE-2017-6891 vulnerability in GNU and Other Products
Published on May 22, 2017

Two errors in the "asn1_find_node()" function (lib/parser_aux.c) within GnuTLS libtasn1 version 4.10 can be exploited to cause a stacked-based buffer overflow by tricking a user into processing a specially crafted assignments file via the e.g. asn1Coding utility.

Vendor Advisory Vendor Advisory Vendor Advisory NVD

Products Associated with CVE-2017-6891

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2017-6891 are published in these products:

Gnutls Libtasn1

GNU Libtasn1

Debian Linux

Apache Bookkeeper

Affected Versions

Flexera Software LLC GnuTLS libtasn1 Version 4.10. Other versions may also be affected. is affected by CVE-2017-6891

Exploit Probability

EPSS

1.01%

Percentile

76.85%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2017-6891 vulnerability in GNU and Other ProductsPublished on May 22, 2017

Products Associated with CVE-2017-6891

Affected Versions

Exploit Probability

CVE-2017-6891 vulnerability in GNU and Other Products
Published on May 22, 2017