29 matches found
openSUSE Security Update : opensc (openSUSE-2021-565)
This update for opensc fixes the following issues : - CVE-2019-15945: Fixed an out-of-bounds access of an ASN.1 Bitstring in decodebitstring bsc1149746. - CVE-2019-15946: Fixed an out-of-bounds access of an ASN.1 Octet string in asn1decodeentry bsc1149747 - CVE-2019-19479: Fixed an incorrect read...
Security update for opensc (moderate)
openSUSE Security Update: Security update for opensc Announcement ID: openSUSE-SU-2021:0565-1 Rating: moderate References: 1149746 1149747 1158256 1158307 1170809 1177364 1177378 1177380 Cross-References: CVE-2019-15945 CVE-2019-15946 CVE-2019-19479 CVE-2019-19480 CVE-2019-20792 CVE-2020-26570...
Updated opensc packages fix security vulnerabilities
The Oberthur smart card software driver in OpenSC before 0.21.0-rc1 has a heap-based buffer overflow in scoberthurreadfile CVE-2020-26570. The gemsafe GPK smart card software driver in OpenSC before 0.21.0-rc1 has a stack-based buffer overflow in scpkcs15emugemsafeGPKinit CVE-2020-26571. The TCOS...
CVE-2020-26570
The Oberthur smart card software driver in OpenSC before 0.21.0-rc1 has a heap-based buffer overflow in scoberthurreadfile...
Stack overflow
The TCOS smart card software driver in OpenSC before 0.21.0-rc1 has a stack-based buffer overflow in tcosdecipher...
CVE-2020-26570
OpenSC CVE-2020-26570 involves a heap-based buffer overflow in the Oberthur smart card driver (sc_oberthur_read_file). Affected OpenSC versions are before 0.21.0-rc1; multiple advisories recommend upgrading to 0.21.0-1 or newer. Impact is a potential compromise via crafted card data; remediation ...
Intel PROSet/Wireless WiFi Software driver Access Control Error Vulnerability
Intel PROSet/Wireless WiFi Software driver is a wireless network card driver from Intel USA. An Access Control Error vulnerability exists in the Intel PROSet/Wireless WiFi Software driver prior to version 21.10, which can be exploited by an attacker to cause a denial of service due to a network...
A large number of Bluetooth devices and systems will be protected by encryption Vulnerability CVE-2018-5383 impact-vulnerability warning-the black bar safety net
Recently, a security research expert in a certain Bluetooth device is found in a high-risk encryption Vulnerability CVE-2018-5383, and an unauthenticated attacker in physical proximity to the target device, this vulnerability will allow them to intercept, monitor or tamper with equipment of the...
Potential Vulnerability with Intel® LAN Products with SR-IOV
Summary: A potential issue impacting Intel® LAN products with SR-IOV capability is expected to be publicly disclosed by security researchers at an industry conference on August 13, 2015. Description: In Intel® LAN products with SR-IOV capability, the potential exists where, under specific...