rpm package
suse/opensc&distro=SUSE Linux Enterprise Module for Basesystem 15 SP3
pkg:rpm/suse/opensc&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3
Vulnerabilities (5)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-42782 | — | < 0.19.0-150100.3.16.1 | 0.19.0-150100.3.16.1 | Apr 18, 2022 | Stack buffer overflow issues were found in Opensc before version 0.22.0 in various places that could potentially crash programs using the library. | ||
| CVE-2021-42781 | — | < 0.19.0-150100.3.16.1 | 0.19.0-150100.3.16.1 | Apr 18, 2022 | Heap buffer overflow issues were found in Opensc before version 0.22.0 in pkcs15-oberthur.c that could potentially crash programs using the library. | ||
| CVE-2021-42780 | — | < 0.19.0-150100.3.16.1 | 0.19.0-150100.3.16.1 | Apr 18, 2022 | A use after return issue was found in Opensc before version 0.22.0 in insert_pin function that could potentially crash programs using the library. | ||
| CVE-2021-42779 | — | < 0.19.0-150100.3.16.1 | 0.19.0-150100.3.16.1 | Apr 18, 2022 | A heap use after free issue was found in Opensc before version 0.22.0 in sc_file_valid. | ||
| CVE-2019-6502 | — | < 0.19.0-150100.3.19.1 | 0.19.0-150100.3.19.1 | Jan 22, 2019 | sc_context_create in ctx.c in libopensc in OpenSC 0.19.0 has a memory leak, as demonstrated by a call from eidenv. |
- CVE-2021-42782Apr 18, 2022affected < 0.19.0-150100.3.16.1fixed 0.19.0-150100.3.16.1
Stack buffer overflow issues were found in Opensc before version 0.22.0 in various places that could potentially crash programs using the library.
- CVE-2021-42781Apr 18, 2022affected < 0.19.0-150100.3.16.1fixed 0.19.0-150100.3.16.1
Heap buffer overflow issues were found in Opensc before version 0.22.0 in pkcs15-oberthur.c that could potentially crash programs using the library.
- CVE-2021-42780Apr 18, 2022affected < 0.19.0-150100.3.16.1fixed 0.19.0-150100.3.16.1
A use after return issue was found in Opensc before version 0.22.0 in insert_pin function that could potentially crash programs using the library.
- CVE-2021-42779Apr 18, 2022affected < 0.19.0-150100.3.16.1fixed 0.19.0-150100.3.16.1
A heap use after free issue was found in Opensc before version 0.22.0 in sc_file_valid.
- CVE-2019-6502Jan 22, 2019affected < 0.19.0-150100.3.19.1fixed 0.19.0-150100.3.19.1
sc_context_create in ctx.c in libopensc in OpenSC 0.19.0 has a memory leak, as demonstrated by a call from eidenv.