-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2022-3f9ee1ad91 2022-12-18 01:40:20.042344 --------------------------------------------------------------------------------
Name : libtasn1 Product : Fedora 36 Version : 4.19.0 Release : 1.fc36 URL : http://www.gnu.org/software/libtasn1/ Summary : The ASN.1 library used in GNUTLS Description : A library that provides Abstract Syntax Notation One (ASN.1, as specified by the X.680 ITU-T recommendation) parsing and structures management, and Distinguished Encoding Rules (DER, as per X.690) encoding and decoding functions.
-------------------------------------------------------------------------------- Update Information:
CVE-2021-46848 libtasn1: Out-of-bound access in ETYPE_OK -------------------------------------------------------------------------------- ChangeLog:
* Fri Dec 2 2022 Simo Sorce simo@redhat.com - 4.19.0-1 - Update to version 4.19.0 - Fixes CVE-2021-46848 (#2140069) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2120812 - libtasn1-4.19.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2120812 [ 2 ] Bug #2140069 - CVE-2021-46848 libtasn1: Out-of-bound access in ETYPE_OK [fedora-36] https://bugzilla.redhat.com/show_bug.cgi?id=2140069 --------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-3f9ee1ad91' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------