Vulnerability in Apeleghq Ts-asn1-der

CVE-2025-32029

ts-asn1-der is a collection of utility classes to encode ASN.1 data following DER rule. Incorrect number DER encoding can lead to denial on service for absolute values in the range 2**31 -- 2**32 - 1. The arithmetic in the numBitLen didn't…

EPSS: 0.003 (51.7th percentile) — read the EPSS interpretation.

Affected products

Apeleghq Ts-asn1-der — versions < 1.0.4

Weakness classification (CWE)

References

https://github.com/ApelegHQ/ts-asn1-der/security/advisories/GHSA-p4qw-7j9g-5h53 (x_refsource_CONFIRM)
https://github.com/ApelegHQ/ts-asn1-der/commit/b2bc9032cbe19755d234a27d79e47a7e52993af8 (x_refsource_MISC)