Vulnerability DatabaseCVE-2021-46848

CVE-2021-46848:
NixOS vulnerability analysis and mitigation

Overview

GNU Libtasn1 before version 4.19.0 contains a vulnerability identified as CVE-2021-46848, which involves an ETYPEOK off-by-one array size check affecting the asn1encodesimpleder function. The vulnerability was discovered in October 2022 and affects various Linux distributions and systems using the GNU Libtasn1 library (NVD, NetApp Advisory).

Technical details

The vulnerability is classified as an off-by-one error (CWE-193) in the ETYPE_OK array size check. It has received a CVSS v3.1 base score of 9.1 (Critical) with the vector string CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H, indicating network accessibility, low attack complexity, and no required privileges or user interaction (NVD).

Impact

The successful exploitation of this vulnerability could lead to disclosure of sensitive information or result in a Denial of Service (DoS) condition. The vulnerability enables access to one additional memory byte, which somewhat constrains the potential damage an attacker could inflict (NetApp Advisory).

Mitigation and workarounds

The vulnerability has been fixed in GNU Libtasn1 version 4.19.0. Various distributions have released security updates to address this issue, including Debian, Fedora, and Ubuntu. Users are advised to upgrade their libtasn1 packages to the latest version (Debian LTS, Fedora Update).

Additional resources

Source: This report was generated using AI

9.1

Score

Published October 24, 2022

Severity CRITICAL

CNA Score 9.1

Affected Technologies

NixOS
Rocky Linux

Has Public Exploit No

Has CISA KEV Exploit No

CISA KEV Release Date N/A

CISA KEV Due Date N/A

Exploitation Probability Percentile (EPSS) 50.9

Exploitation Probability (EPSS) 0.3

Affected packages and libraries

mingw64-libtasn1-debuginfo
libtasn1-6-32bit

Sources

NVD
AlmaLinux Security Advisory
- AlmaLinux 8 Severity MEDIUMHas FixAdded at: Jan 16, 2023
- AlmaLinux 9 Severity MEDIUMHas FixAdded at: Jan 25, 2023
Alpine Security Tracker
- Alpine 3.10, 3.11, 3.12, 3.13 Severity CRITICALHas FixAdded at: Dec 03, 2023
- Alpine 3.14, 3.15, 3.16 Severity CRITICALHas FixAdded at: Dec 15, 2022
- Alpine 3.17 Severity CRITICALHas FixAdded at: Nov 23, 2022
- Alpine 3.18 Severity CRITICALHas FixAdded at: May 10, 2023
- Alpine 3.19 Severity CRITICALHas FixAdded at: Dec 10, 2023
- Alpine 3.20 Severity CRITICALHas FixAdded at: May 26, 2024
- Alpine 3.21 Severity CRITICALHas FixAdded at: Dec 08, 2024
- Alpine 3.22 Severity CRITICALHas FixAdded at: Jun 01, 2025
- Alpine edge Severity CRITICALHas FixAdded at: Jun 19, 2023
CBL-Mariner
- CBL-Mariner 1.0, 2.0 Severity CRITICALHas FixAdded at: Jun 10, 2023
Container-Optimized OS Release Notes
- Container-Optimized OS Severity CRITICALHas FixAdded at: Nov 01, 2022
Debian Security Tracker
- Debian 10, 11, 12 Severity CRITICALHas FixAdded at: Oct 25, 2022
- Debian 13 Severity CRITICALHas FixAdded at: Jun 11, 2023
Homebrew
- Homebrew Severity CRITICALHas FixAdded at: Feb 12, 2024
Nix
- Nix Severity CRITICALHas FixAdded at: Nov 01, 2023
Photon Security Advisory
- Photon 2.0, 3.0, 4.0 Severity CRITICALHas FixAdded at: Oct 30, 2022
Red Hat Errata
- Red Hat 7 Severity MEDIUMNo FixAdded at: Nov 07, 2022
- Red Hat 8 Severity MEDIUMHas FixAdded at: Nov 07, 2022
- Red Hat 9 Severity MEDIUMHas FixAdded at: Nov 07, 2022
Rocky Linux Product Errata
- Rocky 8 Severity MEDIUMHas FixAdded at: May 14, 2023
- Rocky 9 Severity MEDIUMHas FixAdded at: May 14, 2023
Ubuntu Security Tracker
- Ubuntu 16.04 Severity LOWHas FixAdded at: Nov 01, 2022