Lucene search
Gentoo FoundationMGASA-2024-0101HistoryMar 31, 2024 - 6:27 a.m.
Updated opensc packages fix security vulnerability
2024-03-3106:27:58
Gentoo Foundation
advisories.mageia.org
24
opensc
side-channel leak
pkcs#1.5
padding
vulnerability
unix
CVSS3
5.9
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
AI Score
7.3
Confidence
Low
EPSS
0.001
Percentile
26.8%
Side-channel leaks while stripping encryption PKCS#1.5 padding in OpenSC. (CVE-2023-5992)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Mageia | 9 | noarch | opensc | < 0.25.0-1 | opensc-0.25.0-1.mga9 |
Related
prion
prion
Design/Logic Flaw
2024-01-31 14:15:00
amazon
amazon
Medium: opensc
2024-06-06 20:17:00
ubuntucve
ubuntucve
CVE-2023-5992
2024-01-31 00:00:00
debiancve
debiancve
CVE-2023-5992
2024-01-31 14:15:48
oraclelinux
oraclelinux
opensc security update
2024-02-26 00:00:00
opensc security update
2024-02-26 00:00:00
almalinux
almalinux
Moderate: opensc security update
2024-02-26 00:00:00
Moderate: opensc security update
2024-02-26 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2024-0101)
2024-04-05 00:00:00
openSUSE: Security Advisory for opensc (SUSE-SU-2024:1402-1)
2024-04-25 00:00:00
SUSE: Security Advisory (SUSE-SU-2024:1625-1)
2024-05-14 00:00:00
alpinelinux
alpinelinux
CVE-2023-5992
2024-01-31 14:15:48
redhatcve
redhatcve
CVE-2023-5992
2024-01-30 16:53:59
nessus
nessus
RHEL 9 : opensc (RHSA-2024:0966)
2024-02-26 00:00:00
SUSE SLES12 Security Update : opensc (SUSE-SU-2024:1625-1)
2024-05-14 00:00:00
RHEL 8 : opensc (RHSA-2024:0967)
2024-02-26 00:00:00
redhat
redhat
(RHSA-2024:0967) Moderate: opensc security update
2024-02-26 00:56:32
(RHSA-2024:0966) Moderate: opensc security update
2024-02-26 00:56:29
nvd
nvd
CVE-2023-5992
2024-01-31 14:15:48
cve
cve
CVE-2023-5992
2024-01-31 14:15:48
osv
osv
Moderate: opensc security update
2024-02-26 00:00:00
CVE-2023-5992
2024-01-31 14:15:48
Moderate: opensc security update
2024-02-26 00:00:00
cbl_mariner
cbl_mariner
CVE-2023-5992 affecting package opensc for versions less than 0.25.1-3
2024-05-17 21:38:35
cvelist
cvelist
veracode
veracode
Side-Channel Attack
2024-02-20 20:47:01
vulnrichment
vulnrichment
fedora
fedora
[SECURITY] Fedora 38 Update: opensc-0.25.0-1.fc38
2024-03-16 01:51:45
[SECURITY] Fedora 39 Update: opensc-0.25.0-1.fc39
2024-03-16 01:17:33
[SECURITY] Fedora 40 Update: opensc-0.25.0-1.fc40
2024-03-23 00:49:40
CVSS3
5.9
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
AI Score
7.3
Confidence
Low
EPSS
0.001
Percentile
26.8%
Related for MGASA-2024-0101