N/A

CVSS Score

Basic Information

CVE ID

GHSA ID

GHSA-3m6f-3gfg-4x56

EPSS Score

CWE

Published

6/17/2022

Updated

6/13/2023

KEV Status

Technology

Rust

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

GHSA-3m6f-3gfg-4x56

GHSA-3m6f-3gfg-4x56: Panic on incorrect date input to `simple_asn1`

Version 0.6.0 of the simple_asn1 crate panics on certain malformed inputs to its parsing functions, including from_der and der_decode. Because this crate is frequently used with inputs from the network, this should be considered a security vulnerability.

The issue occurs when parsing the old ASN.1 "UTCTime" time format. If an attacker provides a UTCTime where the first character is ASCII but the second character is above 0x7f, a string slice operation in the from_der_ function will try to slice into the middle of a UTF-8 character, and cause a panic.

This error was introduced in commit d7d39d709577710e9dc8, which updated simple_asn1 to use time instead of chrono because of RUSTSEC-2020-159. Versions of simple_asn1 before 0.6.0 are not affected by this issue.

The patch was applied in simple_asn1 version 0.6.1.

(GitHub Advisory)

N/A

CVSS Score

Basic Information

CVE ID

GHSA ID

GHSA-3m6f-3gfg-4x56

EPSS Score

CWE

Published

6/17/2022

Updated

6/13/2023

KEV Status

Technology

Rust

Technical Details

CVSS Vector

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
simple_asn1	rust	= 0.6.0	0.6.1

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability manifests in the UTCTime parsing logic within from_der_. The critical code path converts raw bytes to a String via char conversion, then performs a direct slice (v[0..2]) without validating UTF-8 boundaries. This matches the advisory's description of panicking on high-ASCII second bytes. The commit diff shows this logic was introduced when switching from chrono to time crate handling. The function is directly mentioned in vulnerability descriptions and matches the panic scenario described.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

V*rsion *.*.* o* t** `simpl*_*sn*` *r*t* p*ni*s on **rt*in m*l*orm** inputs to its p*rsin* *un*tions, in*lu*in* `*rom_**r` *n* `**r_***o**`. ****us* t*is *r*t* is *r*qu*ntly us** wit* inputs *rom t** n*twork, t*is s*oul* ** *onsi**r** * s**urity vuln

Reasoning

T** vuln*r**ility m*ni**sts in t** UT*Tim* p*rsin* lo*i* wit*in *rom_**r_. T** *riti**l *o** p*t* *onv*rts r*w *yt*s to * Strin* vi* ***r *onv*rsion, t**n p*r*orms * *ir**t sli** (v[*..*]) wit*out v*li**tin* UT*-* *oun**ri*s. T*is m*t***s t** **visor

N/A

Basic Information

Concerned about an active attack path?

GHSA-3m6f-3gfg-4x56: Panic on incorrect date input to `simple_asn1`

N/A

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability Intelligence
Miggo AI