Security update for opensc (moderate)

openSUSE Security Update: Security update for opensc Announcement ID: openSUSE-SU-2021:0565-1 Rating: moderate References: 1149746 1149747 1158256 1158307 1170809 1177364 1177378 1177380 Cross-References: CVE-2019-15945 CVE-2019-15946 CVE-2019-19479 CVE-2019-19480 CVE-2019-20792 CVE-2020-26570...

NewStart CGSL MAIN 6.02 : opensc Multiple Vulnerabilities (NS-SA-2021-0080)

The remote NewStart CGSL host, running version MAIN 6.02, has opensc packages installed that are affected by multiple vulnerabilities: - OpenSC before 0.20.0-rc1 has an out-of-bounds access of an ASN.1 Octet string in asn1decodeentry in libopensc/asn1.c. CVE-2019-15946 - OpenSC before 0.20.0-rc1...

Oracle Linux 8 : opensc (ELSA-2020-4483)

The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2020-4483 advisory. 0.20.0-2 - Unbreak different CardOS 5 configurations supporting raw RSA 1830856 0.20.0-1 - Rebase to current upstream release 1810660 Tenable has...

Double free

OpenSC before 0.20.0 has a double free in coolkeyfreeprivatedata because coolkeyaddobject in libopensc/card-coolkey.c lacks a uniqueness check...

opensc:fuzz_pkcs15_reader: Heap-double-free in coolkey_free_private_data

Project: https://github.com/OpenSC/OpenSC.git Detailed Report: https://oss-fuzz.com/testcase?key=5766799933308928 Project: opensc Fuzzing Engine: libFuzzer Fuzz Target: fuzzpkcs15reader Job Type: libfuzzerasanopensc Platform Id: linux Crash Type: Heap-double-free Crash Address: 0x62c0001c0200 Cra...

opensc:fuzz_pkcs15_reader: Heap-double-free in coolkey_free_private_data

Project: https://github.com/OpenSC/OpenSC.git Detailed Report: https://oss-fuzz.com/testcase?key=5630085302583296 Project: opensc Fuzzing Engine: libFuzzer Fuzz Target: fuzzpkcs15reader Job Type: libfuzzerasanopensc Platform Id: linux Crash Type: Heap-double-free Crash Address: 0x603000000340 Cra...