26 matches found
TencentOS Server 3: opensc (TSSA-2022:0089)
The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2022:0089 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...
RHEL 7 : opensc (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - opensc: Double free in coolkeyfreeprivatedata in libopensc/card-coolkey.c CVE-2019-20792 - opensc: buffer...
Ubuntu 16.04 ESM / 18.04 ESM / 20.04 ESM : OpenSC vulnerabilities (USN-5281-1)
The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5281-1 advisory. It was discovered that some OpenSC smart card drivers mishandled memory when performing certain decoding operations. An attacker...
SUSE CVE-2020-26570
The Oberthur smart card software driver in OpenSC before 0.21.0-rc1 has a heap-based buffer overflow in scoberthurreadfile...
CVE-2020-26570 affecting package opensc for versions less than 0.22.0-1
CVE-2020-26570 affecting package opensc for versions less than 0.22.0-1. An upgraded version of the package is available that resolves this issue...
USN-5281-1: OpenSC vulnerabilities
It was discovered that some OpenSC smart card drivers mishandled memory when performing certain decoding operations. An attacker could possibly use this issue to cause a denial of service or other unspecified impact. This issue only affected Ubuntu 16.04 ESM and Ubuntu 18.04 ESM. CVE-2019-15945,...
EulerOS 2.0 SP3 : opensc (EulerOS-SA-2022-1752)
According to the versions of the opensc package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - OpenSC before 0.20.0 has a double free in coolkeyfreeprivatedata because coolkeyaddobject in libopensc/card-coolkey.c lacks a uniqueness check...
Huawei EulerOS: Security Advisory for opensc (EulerOS-SA-2022-1752)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
NewStart CGSL MAIN 6.02 : opensc Multiple Vulnerabilities (NS-SA-2022-0062)
The remote NewStart CGSL host, running version MAIN 6.02, has opensc packages installed that are affected by multiple vulnerabilities: - The Oberthur smart card software driver in OpenSC before 0.21.0-rc1 has a heap-based buffer overflow in scoberthurreadfile. CVE-2020-26570 - The gemsafe GPK sma...
SUSE: Security Advisory (SUSE-SU-2022:1041-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
AlmaLinux 8 : opensc (ALSA-2021:1600)
The remote AlmaLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2021:1600 advisory. - The Oberthur smart card software driver in OpenSC before 0.21.0-rc1 has a heap-based buffer overflow in scoberthurreadfile. CVE-2020-26570 - The gemsafe...
Advisory ROSA-SA-2021-1936
Software: opensc 0.19.0 OS: Cobalt 7.9 CVE-ID: CVE-2019-15945 CVE-Crit: MEDIUM CVE-DESC: OpenSC before 0.20.0-rc1 has out-of-bounds access to ASN.1 bit string in decodebitstring in libopensc / asn1.c. CVE-STATUS: default CVE-REV: default CVE-ID: CVE-2019-15946 CVE-Crit: MEDIUM CVE-DESC: OpenSC...
SUSE: Security Advisory (SUSE-SU-2021:1168-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Oracle Linux 8 : opensc (ELSA-2021-1600)
The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2021-1600 advisory. - Fix CVE-2020-26570, CVE-2020-26571 and CVE-2020-26572 Tenable has extracted the preceding description block directly from the Oracle Linux security...
RHEL 8 : opensc (RHSA-2021:1600)
The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2021:1600 advisory. The OpenSC set of libraries and utilities provides support for working with smart cards. OpenSC focuses on cards that support cryptographic...
Moderate: Red Hat Security Advisory: opensc security, bug fix, and enhancement update
An update for opensc is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...
Moderate: opensc security, bug fix, and enhancement update
The OpenSC set of libraries and utilities provides support for working with smart cards. OpenSC focuses on cards that support cryptographic operations and enables their use for authentication, mail encryption, or digital signatures. Security Fixes: opensc: heap-based buffer overflow in...
openSUSE Security Update : opensc (openSUSE-2021-565)
This update for opensc fixes the following issues : - CVE-2019-15945: Fixed an out-of-bounds access of an ASN.1 Bitstring in decodebitstring bsc1149746. - CVE-2019-15946: Fixed an out-of-bounds access of an ASN.1 Octet string in asn1decodeentry bsc1149747 - CVE-2019-19479: Fixed an incorrect read...
SUSE: Security Advisory (SUSE-SU-2021:0998-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE: Security Advisory for opensc (openSUSE-SU-2021:0565-1)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...