Lucene search
OracleLinuxELSA-2024-0966HistoryFeb 26, 2024 - 12:00 a.m.
opensc security update
2024-02-2600:00:00
linux.oracle.com
6
opensc
security update
cve-2023-5992
side-channel leaks
encryption padding
unix
5.9 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
7 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
36.9%
[0.23.0-4]
- Fix CVE-2023-5992: Side-channel leaks while stripping encryption PKCS#1.5 padding
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 9 | src | opensc | < 0.23.0-4.el9_3 | opensc-0.23.0-4.el9_3.src.rpm |
| oracle linux | 9 | aarch64 | opensc | < 0.23.0-4.el9_3 | opensc-0.23.0-4.el9_3.aarch64.rpm |
| oracle linux | 9 | src | opensc | < 0.23.0-4.el9_3 | opensc-0.23.0-4.el9_3.src.rpm |
| oracle linux | 9 | i686 | opensc | < 0.23.0-4.el9_3 | opensc-0.23.0-4.el9_3.i686.rpm |
| oracle linux | 9 | x86_64 | opensc | < 0.23.0-4.el9_3 | opensc-0.23.0-4.el9_3.x86_64.rpm |
Related
redhatcve
redhatcve
CVE-2023-5992
2024-01-30 16:53:59
almalinux
almalinux
Moderate: opensc security update
2024-02-26 00:00:00
Moderate: opensc security update
2024-02-26 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2024-0101)
2024-04-05 00:00:00
SUSE: Security Advisory (SUSE-SU-2024:1625-1)
2024-05-14 00:00:00
openSUSE: Security Advisory for opensc (SUSE-SU-2024:1402-1)
2024-04-25 00:00:00
alpinelinux
alpinelinux
CVE-2023-5992
2024-01-31 14:15:48
oraclelinux
oraclelinux
opensc security update
2024-02-26 00:00:00
redhat
redhat
(RHSA-2024:0967) Moderate: opensc security update
2024-02-26 00:56:32
(RHSA-2024:0966) Moderate: opensc security update
2024-02-26 00:56:29
nessus
nessus
RHEL 9 : opensc (RHSA-2024:0966)
2024-02-26 00:00:00
CentOS 9 : opensc-0.23.0-4.el9
2024-04-26 00:00:00
Amazon Linux 2 : opensc (ALAS-2024-2566)
2024-06-12 00:00:00
debiancve
debiancve
CVE-2023-5992
2024-01-31 14:15:48
ubuntucve
ubuntucve
CVE-2023-5992
2024-01-31 00:00:00
prion
prion
Design/Logic Flaw
2024-01-31 14:15:00
amazon
amazon
Medium: opensc
2024-06-06 20:17:00
osv
osv
Moderate: opensc security update
2024-02-26 00:00:00
CVE-2023-5992
2024-01-31 14:15:48
Moderate: opensc security update
2024-02-26 00:00:00
veracode
veracode
Side-Channel Attack
2024-02-20 20:47:01
cvelist
cvelist
mageia
mageia
Updated opensc packages fix security vulnerability
2024-03-31 06:27:58
cbl_mariner
cbl_mariner
CVE-2023-5992 affecting package opensc for versions less than 0.25.1-3
2024-05-17 21:38:35
nvd
nvd
CVE-2023-5992
2024-01-31 14:15:48
cve
cve
CVE-2023-5992
2024-01-31 14:15:48
fedora
fedora
[SECURITY] Fedora 38 Update: opensc-0.25.0-1.fc38
2024-03-16 01:51:45
[SECURITY] Fedora 39 Update: opensc-0.25.0-1.fc39
2024-03-16 01:17:33
[SECURITY] Fedora 40 Update: opensc-0.25.0-1.fc40
2024-03-23 00:49:40
5.9 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
7 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
36.9%
Related for ELSA-2024-0966