Nixpkgs Security Tracker

Dismissed

Permalink CVE-2025-13151

updated 1 week, 6 days ago by @tomberek Activity log

Created automatic suggestion 2 weeks ago
@tomberek dismissed 1 week, 6 days ago

CVE-2025-13151

Stack-based buffer overflow in libtasn1 version: v4.20.0. The function fails to validate the size of input data resulting in a buffer overflow in asn1_expend_octet_string.

Affected products

libtasn1

=<4.20.0

Matching in nixpkgs

pkgs.libtasn1

ASN.1 library

nixos-unstable 4.20.0
- nixpkgs-unstable 4.20.0
- nixos-unstable-small 4.20.0
nixos-25.05 4.20.0
- nixos-25.05-small 4.20.0
- nixpkgs-25.05-darwin 4.20.0

https://github.com/NixOS/nixpkgs/pull/478141 merged

Suggestion detail

Affected products

Matching in nixpkgs

pkgs.libtasn1