Off-by-one Array Size Check Vulnerability in GNU Libtasn1

Off-by-one Array Size Check Vulnerability in GNU Libtasn1

CVE-2021-46848 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

GNU Libtasn1 before 4.19.0 has an ETYPE_OK off-by-one array size check that affects asn1_encode_simple_der.

Learn more about our Web Application Penetration Testing UK.