Heap buffer overflow issues were found in Opensc before version 0.22.0 in pkcs15-oberthur.c that could potentially crash programs using the library.
CPE | Name | Operator | Version |
---|---|---|---|
opensc | eq | 0.20.0 | |
opensc | eq | 0.19.0 | |
opensc | eq | 0.21.0 | |
opensc | eq | 0.14.0rc2 | |
opensc | eq | 0.12.2-rc1 | |
opensc | eq | 0.17.0 | |
opensc | eq | 0.20.0-rc1 | |
opensc | eq | 0.17.0-rc2 | |
opensc | eq | 0.14.0rtm | |
opensc | eq | 0.20.0-rc2 |
bugzilla.redhat.com/show_bug.cgi?id=2016439
github.com/OpenSC/OpenSC/commit/05648b06
github.com/OpenSC/OpenSC/commit/17d8980c
github.com/OpenSC/OpenSC/commit/40c50a3a
github.com/OpenSC/OpenSC/commit/5d4daf6c
github.com/OpenSC/OpenSC/commit/cae5c71f
lists.debian.org/debian-lts-announce/2023/06/msg00025.html
security.gentoo.org/glsa/202209-03