37 matches found
MiracleLinux 8 : opensc-0.20.0-6.el8 (AXSA:2023-7249:02)
The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2023-7249:02 advisory. opensc: buffer overrun vulnerability in pkcs15 cardoshaveverifyrcpackage CVE-2023-2977 Tenable has extracted the preceding description block directly from th...
Advisory ROSA-SA-2025-3098
Software: opensc 0.20.0 OS: ROSA Virtualization 2.1 packageevrstring: opensc-0.20.0-8.rv3 CVE-ID: CVE-2023-2977 BDU-ID: None CVE-Crit: HIGH CVE-DESC.: A vulnerability in OpenSC causes a buffer overflow in the pkcs15 cardoshaveverifyrcpackage function, allowing an attacker to cause a processing...
TencentOS Server 4: opensc (TSSA-2024:0030)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0030 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...
Alibaba Cloud Linux 3 : 0001: opensc (ALINUX3-SA-2024:0001)
The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2024:0001 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2023-2977: A vulnerbility was found in OpenSC...
USN-7346-2 opensc regression
USN-7346-1 fixed vulnerabilities in OpenSC. The update introduced a regression in Ubuntu 16.04 LTS, Ubuntu 18.04 LTS, and Ubuntu 20.04 LTS. The security fix has been removed pending further investigation. We apologize for the inconvenience. Original advisory details: It was discovered that OpenSC...
CVE-2023-2977 affecting package opensc for versions less than 0.22.0-3
CVE-2023-2977 affecting package opensc for versions less than 0.22.0-3. A patched version of the package is available...
CVE-2023-2977 affecting package opensc for versions less than 0.22.0-3
CVE-2023-2977 affecting package opensc for versions less than 0.22.0-3. A patched version of the package is available...
CVE-2023-2977
creationtimestamp| type| source ---|---|--- 2025-01-09 18:17:05+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/998...
RHEL 7 : opensc (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - opensc: Double free in coolkeyfreeprivatedata in libopensc/card-coolkey.c CVE-2019-20792 - opensc: buffer...
CentOS 9 : opensc-0.23.0-2.el9
The remote CentOS Linux 9 host has a package installed that is affected by a vulnerability as referenced in the opensc-0.23.0-2.el9 build changelog. - buffer overrun in pkcs15init for cardos CVE-2023-2977 Note that Nessus has not tested for this issue but has instead relied only on the...
Oracle Linux 8 : opensc (ELSA-2023-7160)
The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2023-7160 advisory. - Fix CVE-2023-2977: potential buffer overrun in pkcs15 cardoshaveverifyrcpackage 2211093 Tenable has extracted the preceding description block directly from th...
opensc security and bug fix update
0.20.0-6 - Fix introduced issues tagged by coverity RHEL-765 0.20.0-5 - Avoid potential crash because of missing list terminator 2196234 - Fix CVE-2023-2977: potential buffer overrun in pkcs15 cardoshaveverifyrcpackage 2211093 - Backport upstream changes regarding to reader removal 2097048...
Oracle Linux 9 : opensc (ELSA-2023-6587)
The remote Oracle Linux 9 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2023-6587 advisory. - Fix CVE-2023-2977: buffer overrun in pkcs15init for cardos Tenable has extracted the preceding description block directly from the Oracle Linux security...
Low: Red Hat Security Advisory: opensc security and bug fix update
An update for opensc is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...
Low: opensc security and bug fix update
The OpenSC set of libraries and utilities provides support for working with smart cards. OpenSC focuses on cards that support cryptographic operations and enables their use for authentication, mail encryption, or digital signatures. Security Fixes: opensc: buffer overrun vulnerability in pkcs15...
opensc security update
0.23.0-2 - Fix regression in handling OpenPGP cards - Fix CVE-2023-2977: buffer overrun in pkcs15init for cardos 0.23.0-1 - Rebase to latest 0.23.0 release 2100409 - Use separate OpenSSL context to work better from inside of OpenSSL providers...
RHEL 9 : opensc (RHSA-2023:6587)
The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2023:6587 advisory. The OpenSC set of libraries and utilities provides support for working with smart cards. OpenSC focuses on cards that support cryptographic operation...
Low: opensc security update
The OpenSC set of libraries and utilities provides support for working with smart cards. OpenSC focuses on cards that support cryptographic operations and enables their use for authentication, mail encryption, or digital signatures. Security Fixes: opensc: buffer overrun vulnerability in pkcs15...
ALSA-2023:6587 Low: opensc security update
The OpenSC set of libraries and utilities provides support for working with smart cards. OpenSC focuses on cards that support cryptographic operations and enables their use for authentication, mail encryption, or digital signatures. Security Fixes: opensc: buffer overrun vulnerability in pkcs15...
BELL-CVE-2023-2977
Bulletin has no description...