[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

GNU Libtasn1 4.11 released

From: Nikos Mavrogiannopoulos
Subject: GNU Libtasn1 4.11 released
Date: Sat, 27 May 2017 07:30:32 +0200

GNU Libtasn1 is a standalone library written in C for manipulating
ASN.1 objects including DER/BER encoding/decoding.  GNU Libtasn1 is
used by GnuTLS to handle X.509 structures.

* Noteworthy changes in release 4.11 (released 2017-05-27) [stable]
- Introduced the ASN1_TIME_ENCODING_ERROR error code to indicate
  an invalid encoding in the DER time fields.
- Introduced flag ASN1_DECODE_FLAG_ALLOW_INCORRECT_TIME. This flag
  allows decoding errors in time fields even when in strict DER mode.
  That is introduced in order to allow toleration of invalid times in
  X.509 certificates (which are common) even though strict DER adherence
  is enforced in other fields.
- Added safety check in asn1_find_node(). That prevents a crash
  when a very long variable name is provided by the developer.
  Note that this to be exploited requires controlling the ASN.1
  definitions used by the developer, i.e., the 'name' parameter of
  asn1_write_value() or asn1_read_value(). The library is
  not designed to protect against malicious manipulation of the
  developer assigned variable names. Reported by Jakub Jirasek.


Here are the compressed sources:

Here are GPG detached signatures:

If you need help to use Libtasn1, or want to help others, you are
invited to join the help-libtasn1 mailing list, see:

All manuals are available from:

Direct links to the manual:

Direct links to the API Reference manual:

The software is cryptographically signed by the author using an
OpenPGP key identified by the following information:

pub   3104R/96865171 2008-05-04 [expires: 2028-04-29]
uid                  Nikos Mavrogiannopoulos <nmav <at>>
uid                  Nikos Mavrogiannopoulos <n.mavrogiannopoulos <at>>
sub   2048R/9013B842 2008-05-04 [expires: 2018-05-02]
sub   2048R/1404A91D 2008-05-04 [expires: 2018-05-02]


reply via email to

[Prev in Thread] Current Thread [Next in Thread]