CVE-2018-16425
Description
A double free when handling responses from an HSM Card in sc_pkcs15emu_sc_hsm_init in libopensc/pkcs15-sc-hsm.c in OpenSC before 0.19.0-rc1 could be used by attackers able to supply crafted smartcards to cause a denial of service (application crash) or possibly have unspecified other impact.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Double free in OpenSC's HSM card handling allows attackers with crafted smartcards to cause a denial of service via application crash.
Vulnerability
A double free vulnerability exists in the sc_pkcs15emu_sc_hsm_init function in libopensc/pkcs15-sc-hsm.c in OpenSC versions before 0.19.0-rc1 [1][3]. The flaw occurs when handling crafted responses from an HSM Card, leading to a double free of memory.
Exploitation
An attacker must supply a malicious smartcard that sends specially crafted responses to APDU commands. No authentication is required; the attacker only needs physical or logical access to insert the smartcard into a reader used by an application relying on OpenSC [1].
Impact
Successful exploitation results in a denial of service (application crash) due to memory corruption. The description states that unspecified other impact may be possible, but no further details have been disclosed [1].
Mitigation
The vulnerability is fixed in OpenSC version 0.19.0-rc1 [3]. Users should upgrade to this version or later. No workarounds have been published. The advisory notes that the issue is part of a larger set of vulnerabilities addressed in that release [1].
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
3- Range: <0.19.0-rc1
- osv-coords2 versionspkg:rpm/opensuse/opensc&distro=openSUSE%20Tumbleweedpkg:rpm/suse/opensc&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015
< 0.21.0-2.2+ 1 more
- (no CPE)range: < 0.21.0-2.2
- (no CPE)range: < 0.18.0-3.8.1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- github.com/OpenSC/OpenSC/commit/360e95d45ac4123255a4c796db96337f332160admitrex_refsource_MISC
- github.com/OpenSC/OpenSC/releases/tag/0.19.0-rc1mitrex_refsource_MISC
- lists.debian.org/debian-lts-announce/2019/09/msg00009.htmlmitremailing-listx_refsource_MLIST
- www.x41-dsec.de/lab/advisories/x41-2018-002-OpenSC/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.