High severity7.5OSV Advisory· Published Jan 22, 2019· Updated Jun 17, 2026
CVE-2019-6502
CVE-2019-6502
Description
sc_context_create in ctx.c in libopensc in OpenSC 0.19.0 has a memory leak, as demonstrated by a call from eidenv.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
150.12.2, 0.12.2-rc1, 0.13.0, …+ 1 more
- (no CPE)range: 0.12.2, 0.12.2-rc1, 0.13.0, …
- (no CPE)range: =0.19.0
- osv-coords12 versionspkg:rpm/opensuse/opensc&distro=openSUSE%20Leap%2015.3pkg:rpm/opensuse/opensc&distro=openSUSE%20Leap%20Micro%205.2pkg:rpm/opensuse/opensc&distro=openSUSE%20Tumbleweedpkg:rpm/suse/opensc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOSpkg:rpm/suse/opensc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSSpkg:rpm/suse/opensc&distro=SUSE%20Linux%20Enterprise%20Micro%205.1pkg:rpm/suse/opensc&distro=SUSE%20Linux%20Enterprise%20Micro%205.2pkg:rpm/suse/opensc&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3pkg:rpm/suse/opensc&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5pkg:rpm/suse/opensc&distro=SUSE%20Linux%20Enterprise%20Server%2015-LTSSpkg:rpm/suse/opensc&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5pkg:rpm/suse/opensc&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015
< 0.19.0-150100.3.19.1+ 11 more
- (no CPE)range: < 0.19.0-150100.3.19.1
- (no CPE)range: < 0.19.0-150100.3.19.1
- (no CPE)range: < 0.21.0-2.2
- (no CPE)range: < 0.18.0-150000.3.23.1
- (no CPE)range: < 0.18.0-150000.3.23.1
- (no CPE)range: < 0.19.0-150100.3.19.1
- (no CPE)range: < 0.19.0-150100.3.19.1
- (no CPE)range: < 0.19.0-150100.3.19.1
- (no CPE)range: < 0.13.0-3.6.27
- (no CPE)range: < 0.18.0-150000.3.23.1
- (no CPE)range: < 0.13.0-3.6.27
- (no CPE)range: < 0.18.0-150000.3.23.1
Patches
Vulnerability mechanics
References
3- github.com/OpenSC/OpenSC/issues/1586nvdExploitIssue TrackingThird Party Advisory
- www.openwall.com/lists/oss-security/2019/12/29/1nvd
- lists.debian.org/debian-lts-announce/2023/06/msg00025.htmlnvd
News mentions
0No linked articles in our index yet.