Unrated severityNVD Advisory· Published Apr 10, 2015· Updated Jun 17, 2026
CVE-2015-2806
CVE-2015-2806
Description
Stack-based buffer overflow in asn1_der_decoding in libtasn1 before 4.4 allows remote attackers to have unspecified impact via unknown vectors.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
26cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:lts:*:*:*+ 3 more
- cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:lts:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:14.10:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:20:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:o:fedoraproject:fedora:20:*:*:*:*:*:*:*
- cpe:2.3:o:fedoraproject:fedora:21:*:*:*:*:*:*:*
- cpe:2.3:o:fedoraproject:fedora:22:*:*:*:*:*:*:*
- osv-coords16 versionspkg:rpm/opensuse/libtasn1&distro=openSUSE%20Tumbleweedpkg:rpm/suse/gnutls&distro=SUSE%20Linux%20Enterprise%20Desktop%2011%20SP3pkg:rpm/suse/gnutls&distro=SUSE%20Linux%20Enterprise%20Desktop%2011%20SP4pkg:rpm/suse/gnutls&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2011%20SP3pkg:rpm/suse/gnutls&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2011%20SP4pkg:rpm/suse/gnutls&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3pkg:rpm/suse/gnutls&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-TERADATApkg:rpm/suse/gnutls&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4pkg:rpm/suse/gnutls&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP3pkg:rpm/suse/gnutls&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4pkg:rpm/suse/gnutls&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2011%20SP3pkg:rpm/suse/gnutls&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2011%20SP4pkg:rpm/suse/libtasn1&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/libtasn1&distro=SUSE%20Linux%20Enterprise%20Server%2012pkg:rpm/suse/libtasn1&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012pkg:rpm/suse/libtasn1&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012
< 4.9-1.3+ 15 more
- (no CPE)range: < 4.9-1.3
- (no CPE)range: < 2.4.1-24.39.60.1
- (no CPE)range: < 2.4.1-24.39.60.1
- (no CPE)range: < 2.4.1-24.39.60.1
- (no CPE)range: < 2.4.1-24.39.60.1
- (no CPE)range: < 2.4.1-24.39.60.1
- (no CPE)range: < 2.4.1-24.39.60.1
- (no CPE)range: < 2.4.1-24.39.60.1
- (no CPE)range: < 2.4.1-24.39.60.1
- (no CPE)range: < 2.4.1-24.39.60.1
- (no CPE)range: < 2.4.1-24.39.60.1
- (no CPE)range: < 2.4.1-24.39.60.1
- (no CPE)range: < 3.7-4.1
- (no CPE)range: < 3.7-4.1
- (no CPE)range: < 3.7-4.1
- (no CPE)range: < 3.7-4.1
Patches
Vulnerability mechanics
References
17- lists.fedoraproject.org/pipermail/package-announce/2015-April/154741.htmlnvdThird Party Advisory
- lists.fedoraproject.org/pipermail/package-announce/2015-April/154805.htmlnvdThird Party Advisory
- lists.fedoraproject.org/pipermail/package-announce/2015-April/155117.htmlnvdThird Party Advisory
- lists.fedoraproject.org/pipermail/package-announce/2015-April/155270.htmlnvdThird Party Advisory
- lists.fedoraproject.org/pipermail/package-announce/2015-April/155435.htmlnvdThird Party Advisory
- lists.fedoraproject.org/pipermail/package-announce/2015-April/155483.htmlnvdThird Party Advisory
- www.debian.org/security/2015/dsa-3220nvdThird Party Advisory
- www.openwall.com/lists/oss-security/2015/03/29/4nvdMailing ListThird Party Advisory
- www.openwall.com/lists/oss-security/2015/03/31/2nvdMailing ListThird Party Advisory
- www.securitytracker.com/id/1032080nvdThird Party AdvisoryVDB Entry
- www.ubuntu.com/usn/USN-2559-1nvdThird Party Advisory
- www.mandriva.com/security/advisoriesnvdBroken Link
- git.savannah.gnu.org/gitweb/nvd
- www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.htmlnvd
- www.securityfocus.com/bid/73436nvd
- access.redhat.com/errata/RHSA-2017:1860nvd
- security.gentoo.org/glsa/201509-04nvd
News mentions
0No linked articles in our index yet.