Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-13151

Stack-based buffer overflow in libtasn1 version: v4.20.0. The function fails to validate the size of input data resulting in a buffer overflow in asn1_expend_octet_string.

Published

2026-01-07T22:15:43.200

Last Modified

2026-02-02T19:27:23.070

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 7.5 (HIGH)

Weaknesses

Type: Primary
CWE-787

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	gnu	libtasn1	4.20.0	Yes

References

https://gitlab.com/gnutls/libtasn1 Product ([email protected])
https://gitlab.com/gnutls/libtasn1/-/merge_requests/121 Patch ([email protected])
http://www.openwall.com/lists/oss-security/2026/01/08/5 Mailing List, Patch (af854a3a-2127-422b-91ae-364da2661108)
https://www.kb.cert.org/vuls/id/271649 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)