| Package | libtasn1-6 |
|---|---|
| Version | 4.2-3+deb8u5 (jessie), 4.10-1.1+deb9u2 (stretch) |
| Related CVEs | CVE-2021-46848 |
It was discovered that there was an off-by-one array size issue in libtasn1-6, a library to manage the generic ASN.1 data structure.
For Debian 8 jessie, these problems have been fixed in version 4.2-3+deb8u5.
For Debian 9 stretch, these problems have been fixed in version 4.10-1.1+deb9u2.
We recommend that you upgrade your libtasn1-6 packages.
Further information about Extended LTS security advisories can be found in the dedicated section of our website.