CVE-2021-46848

Source
https://cve.org/CVERecord?id=CVE-2021-46848
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-46848.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2021-46848
Downstream
Related
Published
2022-10-24T14:15:49.973Z
Modified
2026-07-09T02:49:00.070228Z
Severity
  • 9.1 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H CVSS Calculator
Summary
[none]
Details

GNU Libtasn1 before 4.19.0 has an ETYPEOK off-by-one array size check that affects asn1encodesimpleder.

Database specific
{
    "unresolved_ranges": [
        {
            "cpes": [
                "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*"
            ],
            "extracted_events": [
                {
                    "introduced": "10.0"
                },
                {
                    "last_affected": "10.0"
                }
            ],
            "source": "CPE_STRING",
            "vendor_product": "debian:debian_linux"
        },
        {
            "cpes": [
                "cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*",
                "cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*",
                "cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:*"
            ],
            "extracted_events": [
                {
                    "introduced": "35"
                },
                {
                    "last_affected": "35"
                },
                {
                    "introduced": "36"
                },
                {
                    "last_affected": "36"
                },
                {
                    "introduced": "37"
                },
                {
                    "last_affected": "37"
                }
            ],
            "source": "CPE_STRING",
            "vendor_product": "fedoraproject:fedora"
        }
    ]
}
References

Affected packages

Git / gitlab.com/gnutls/libtasn1

Affected ranges

Type
GIT
Repo
https://gitlab.com/gnutls/libtasn1
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
Fixed
Database specific
{
    "extracted_events": [
        {
            "introduced": "0"
        },
        {
            "fixed": "4.19.0"
        }
    ],
    "cpe": "cpe:2.3:a:gnu:libtasn1:*:*:*:*:*:*:*:*",
    "source": [
        "CPE_RANGE",
        "REFERENCES"
    ]
}

Affected versions

4.*
4.16.0
Other
gnutls_0_5_0
gnutls_0_5_1
libasn1_0_1_0
libtasn1-0-3-2
libtasn1_0_1_2
libtasn1_0_2_0
libtasn1_0_2_1
libtasn1_0_2_10
libtasn1_0_2_11
libtasn1_0_2_12
libtasn1_0_2_13
libtasn1_0_2_14
libtasn1_0_2_15
libtasn1_0_2_16
libtasn1_0_2_17
libtasn1_0_2_18
libtasn1_0_2_2
libtasn1_0_2_3
libtasn1_0_2_4
libtasn1_0_2_5
libtasn1_0_2_6
libtasn1_0_2_7
libtasn1_0_2_8
libtasn1_0_2_9
libtasn1_0_3_0
libtasn1_0_3_1
libtasn1_0_3_10
libtasn1_0_3_2
libtasn1_0_3_3
libtasn1_0_3_4
libtasn1_0_3_5
libtasn1_0_3_6
libtasn1_0_3_7
libtasn1_0_3_8
libtasn1_0_3_9
libtasn1_1_0
libtasn1_1_1
libtasn1_1_2
libtasn1_1_3
libtasn1_1_4
libtasn1_1_5
libtasn1_1_6
libtasn1_2_0
libtasn1_2_1
libtasn1_2_10
libtasn1_2_11
libtasn1_2_12
libtasn1_2_13
libtasn1_2_2
libtasn1_2_3
libtasn1_2_4
libtasn1_2_5
libtasn1_2_6
libtasn1_2_7
libtasn1_2_8
libtasn1_2_9
libtasn1_3_0
libtasn1_3_1
libtasn1_3_2
libtasn1_3_3
libtasn1_3_4
libtasn1_3_5
libtasn1_3_6
libtasn1_4_0
libtasn1_4_1
libtasn1_4_11
libtasn1_4_12
libtasn1_4_13
libtasn1_4_14
libtasn1_4_15_0
libtasn1_4_16_0
libtasn1_4_2
libtasn1_4_3
libtasn1_4_4
libtasn1_4_5
libtasn1_4_6
libtasn1_4_8
libtasn1_4_9
libtasn1_after_rename
libtasn1_4.*
libtasn1_4.7
v4.*
v4.16.0
v4.17.0
v4.18.0

Database specific

vanir_signatures_modified
"2026-07-09T02:49:00Z"
source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-46848.json"
vanir_signatures
[
    {
        "signature_type": "Line",
        "target": {
            "file": "lib/int.h"
        },
        "deprecated": false,
        "digest": {
            "line_hashes": [
                "180900001376631709891623456653421985644",
                "86988387996833609858408414136069345084",
                "224585302465881495030456921739265879297",
                "137788088335804504219050604484537465829"
            ],
            "threshold": 0.9
        },
        "id": "CVE-2021-46848-7660d0ca",
        "source": "https://gitlab.com/gnutls/libtasn1@44a700d2051a666235748970c2df047ff207aeb5",
        "signature_version": "v1"
    }
]