CVE-2019-15945
Description
OpenSC before 0.20.0-rc1 has an out-of-bounds access of an ASN.1 Bitstring in decode_bit_string in libopensc/asn1.c.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
OpenSC before 0.20.0-rc1 has an out-of-bounds access when decoding ASN.1 Bitstrings, potentially affecting smart card operations.
Vulnerability
CVE-2019-15945 is an out-of-bounds access vulnerability in the ASN.1 Bitstring decoding function decode_bit_string in libopensc/asn1.c of OpenSC [1]. The flaw exists in versions before 0.20.0-rc1, where insufficient bounds checking on the input buffer leads to reading beyond the allocated memory [4]. The vulnerability was discovered through fuzz testing via OSS-Fuzz [2].
Exploitation
An attacker would need to supply a malformed ASN.1 Bitstring to an application using the vulnerable OpenSC library [1]. This could be achieved by presenting a crafted smart card or providing a malicious certificate/security object. No authentication is required; the attacker only needs to trigger the decoding routine with the crafted input [4]. The specific sequence involves the function first checking the input length but not properly using that check to prevent an out-of-bounds read when processing the bits [4].
Impact
Successful exploitation can lead to an out-of-bounds memory access, potentially resulting in information disclosure or a denial-of-service condition [1][4]. The confidentiality impact is considered low, and the integrity impact is none; however, the availability impact could be high if the read causes a crash [1]. The attacker does not gain code execution control from this read-only out-of-bounds access.
Mitigation
OpenSC version 0.20.0, released on December 29, 2019, includes the fix [2]. The patch moves the out-of-bounds read inside the proper length check and initializes the output buffer earlier [4]. Users should update to OpenSC 0.20.0 or later. No workaround is available for earlier versions [2].
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
11- OpenSC/OpenSCdescription
- Range: <0.20.0-rc1
- osv-coords9 versionspkg:rpm/opensuse/opensc&distro=openSUSE%20Leap%2015.2pkg:rpm/opensuse/opensc&distro=openSUSE%20Tumbleweedpkg:rpm/suse/opensc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOSpkg:rpm/suse/opensc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSSpkg:rpm/suse/opensc&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP2pkg:rpm/suse/opensc&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5pkg:rpm/suse/opensc&distro=SUSE%20Linux%20Enterprise%20Server%2015-LTSSpkg:rpm/suse/opensc&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5pkg:rpm/suse/opensc&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015
< 0.19.0-lp152.3.3.1+ 8 more
- (no CPE)range: < 0.19.0-lp152.3.3.1
- (no CPE)range: < 0.21.0-2.2
- (no CPE)range: < 0.18.0-150000.3.23.1
- (no CPE)range: < 0.18.0-150000.3.23.1
- (no CPE)range: < 0.19.0-3.7.1
- (no CPE)range: < 0.13.0-3.11.1
- (no CPE)range: < 0.18.0-150000.3.23.1
- (no CPE)range: < 0.13.0-3.11.1
- (no CPE)range: < 0.18.0-150000.3.23.1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
6- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NDSQLMZZYBHO5X3BK7D6E7E6NZIMZDI5/mitrevendor-advisoryx_refsource_FEDORA
- www.openwall.com/lists/oss-security/2019/12/29/1mitremailing-listx_refsource_MLIST
- github.com/OpenSC/OpenSC/commit/412a6142c27a5973c61ba540e33cdc22d5608e68mitrex_refsource_MISC
- github.com/OpenSC/OpenSC/compare/f1691fc...12218d4mitrex_refsource_MISC
- lists.debian.org/debian-lts-announce/2019/09/msg00009.htmlmitremailing-listx_refsource_MLIST
- lists.debian.org/debian-lts-announce/2021/11/msg00027.htmlmitremailing-listx_refsource_MLIST
News mentions
0No linked articles in our index yet.