A libtasn1-6 security update has been released for Debian GNU/Linux 8 LTS to address a denial of service or possibly unspecified other impact by a stack-based buffer overflow due to a flood of crafted ICMP and UDP packets.

DLA 2255-1: libtasn1-6 security update

Package : libtasn1-6
Version : 4.2-3+deb8u4
CVE ID : CVE-2017-10790

A vulnerability has been discovered in Libtasn1, a library to manage
ASN.1 structures, allowing a remote attacker to cause a denial of service
against an application using the Libtasn1 library.

For Debian 8 "Jessie", this problem has been fixed in version
4.2-3+deb8u4.

We recommend that you upgrade your libtasn1-6 packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at:   https://wiki.debian.org/LTS