EulerOS 2.0 SP3 : opensc (EulerOS-SA-2020-2066)

According to the versions of the opensc package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - OpenSC before 0.20.0-rc1 has an out-of-bounds access of an ASN.1 Bitstring in decodebitstring in libopensc/asn1.c.CVE-2019-15945 - OpenSC before...

OSV-2020-1040 Heap-buffer-overflow in decode_bit_string

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=16615 Crash type: Heap-buffer-overflow READ 1 Crash state: decodebitstring decodebitfield asn1decodeentry...

OSV-2020-1017 Heap-buffer-overflow in decode_bit_string

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=16614 Crash type: Heap-buffer-overflow READ 1 Crash state: decodebitstring scasn1printbitstring printtagsrecursive...

Design/Logic Flaw

OpenSC before 0.20.0-rc1 has an out-of-bounds access of an ASN.1 Bitstring in decodebitstring in libopensc/asn1.c...

CVE-2019-15945

OpenSC before 0.20.0-rc1 has an out-of-bounds access of an ASN.1 Bitstring in decodebitstring in libopensc/asn1.c...

CVE-2019-15945

OpenSC before 0.20.0-rc1 has an out-of-bounds access of an ASN.1 Bitstring in decodebitstring in libopensc/asn1.c...

CVE-2019-15945

CVE-2019-15945 affects OpenSC prior to 0.20.0-rc1, with an out-of-bounds access in libopensc/asn1.c decode_bit_string. Several advisories (Arch Linux, AlmaLinux, Debian LTS, others) map this to a vulnerability class that can enable denial of service via malformed data on a local basis. Affected p...