Lucene search
OracleLinuxELSA-2024-0967HistoryFeb 26, 2024 - 12:00 a.m.
opensc security update
2024-02-2600:00:00
linux.oracle.com
10
opensc
security update
version 0.20.0-8
cve-2023-5992
side-channel leaks
encryption
pkcs#1.5 padding
unix
5.9 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
7 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
36.9%
[0.20.0-8]
- Fix CVE-2023-5992: Side-channel leaks while stripping encryption PKCS#1.5 padding
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 8 | src | opensc | < 0.20.0-8.el8_9 | opensc-0.20.0-8.el8_9.src.rpm |
| oracle linux | 8 | src | opensc | < 0.20.0-8.el8_9 | opensc-0.20.0-8.el8_9.src.rpm |
| oracle linux | 8 | aarch64 | opensc | < 0.20.0-8.el8_9 | opensc-0.20.0-8.el8_9.aarch64.rpm |
| oracle linux | 8 | aarch64 | opensc | < 0.20.0-8.el8_9 | opensc-0.20.0-8.el8_9.aarch64.rpm |
| oracle linux | 8 | src | opensc | < 0.20.0-8.el8_9 | opensc-0.20.0-8.el8_9.src.rpm |
| oracle linux | 8 | src | opensc | < 0.20.0-8.el8_9 | opensc-0.20.0-8.el8_9.src.rpm |
| oracle linux | 8 | i686 | opensc | < 0.20.0-8.el8_9 | opensc-0.20.0-8.el8_9.i686.rpm |
| oracle linux | 8 | i686 | opensc | < 0.20.0-8.el8_9 | opensc-0.20.0-8.el8_9.i686.rpm |
| oracle linux | 8 | x86_64 | opensc | < 0.20.0-8.el8_9 | opensc-0.20.0-8.el8_9.x86_64.rpm |
| oracle linux | 8 | x86_64 | opensc | < 0.20.0-8.el8_9 | opensc-0.20.0-8.el8_9.x86_64.rpm |
Related
redhatcve
redhatcve
CVE-2023-5992
2024-01-30 16:53:59
almalinux
almalinux
Moderate: opensc security update
2024-02-26 00:00:00
Moderate: opensc security update
2024-02-26 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2024-0101)
2024-04-05 00:00:00
openSUSE: Security Advisory for opensc (SUSE-SU-2024:1402-1)
2024-04-25 00:00:00
SUSE: Security Advisory (SUSE-SU-2024:1625-1)
2024-05-14 00:00:00
alpinelinux
alpinelinux
CVE-2023-5992
2024-01-31 14:15:48
redhat
redhat
(RHSA-2024:0967) Moderate: opensc security update
2024-02-26 00:56:32
(RHSA-2024:0966) Moderate: opensc security update
2024-02-26 00:56:29
nessus
nessus
RHEL 9 : opensc (RHSA-2024:0966)
2024-02-26 00:00:00
CentOS 9 : opensc-0.23.0-4.el9
2024-04-26 00:00:00
Amazon Linux 2 : opensc (ALAS-2024-2566)
2024-06-12 00:00:00
debiancve
debiancve
CVE-2023-5992
2024-01-31 14:15:48
ubuntucve
ubuntucve
CVE-2023-5992
2024-01-31 00:00:00
prion
prion
Design/Logic Flaw
2024-01-31 14:15:00
amazon
amazon
Medium: opensc
2024-06-06 20:17:00
osv
osv
Moderate: opensc security update
2024-02-26 00:00:00
CVE-2023-5992
2024-01-31 14:15:48
Moderate: opensc security update
2024-02-26 00:00:00
veracode
veracode
Side-Channel Attack
2024-02-20 20:47:01
nvd
nvd
CVE-2023-5992
2024-01-31 14:15:48
cve
cve
CVE-2023-5992
2024-01-31 14:15:48
mageia
mageia
Updated opensc packages fix security vulnerability
2024-03-31 06:27:58
cbl_mariner
cbl_mariner
CVE-2023-5992 affecting package opensc for versions less than 0.25.1-3
2024-05-17 21:38:35
cvelist
cvelist
oraclelinux
oraclelinux
opensc security update
2024-02-26 00:00:00
fedora
fedora
[SECURITY] Fedora 38 Update: opensc-0.25.0-1.fc38
2024-03-16 01:51:45
[SECURITY] Fedora 39 Update: opensc-0.25.0-1.fc39
2024-03-16 01:17:33
[SECURITY] Fedora 40 Update: opensc-0.25.0-1.fc40
2024-03-23 00:49:40
5.9 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
7 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
36.9%
Related for ELSA-2024-0967