The (1) asn1readvaluetype and (2) asn1read_value functions in GNU Libtasn1 before 3.6 allows context-dependent attackers to cause a denial of service (NULL pointer dereference and crash) via a NULL value in an ivalue argument.
{ "urgency": "not yet assigned" }