Lucene search
Veracode Vulnerability DatabaseVERACODE:21134HistoryAug 08, 2019 - 12:07 a.m.
Buffer Overflows
2019-08-0800:07:54
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
14
EPSS
0.001
Percentile
44.9%
opensc has buffer overflows vulnerability. It is due to lack of proper handling of responses from CAC Cards in card-cac.c:cac_get_serial_nr_from_CUID().
References
access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/7.7_release_notes/index
access.redhat.com/errata/RHSA-2019:2154
access.redhat.com/security/updates/classification/#moderate
bugzilla.redhat.com/show_bug.cgi?id=1656791
bugzilla.redhat.com/show_bug.cgi?id=1672898
github.com/OpenSC/OpenSC/commit/360e95d45ac4123255a4c796db96337f332160ad#diff-848b13147a344ba2c6361d91ca77feb1
github.com/OpenSC/OpenSC/releases/tag/0.19.0-rc1
www.x41-dsec.de/lab/advisories/x41-2018-002-OpenSC/
Related
cvelist
cvelist
CVE-2018-16421
2018-09-04 00:00:00
ubuntucve
ubuntucve
CVE-2018-16421
2018-09-04 00:00:00
nvd
nvd
CVE-2018-16421
2018-09-04 00:29:00
CVE-2018-1000672
2018-09-05 06:29:00
debiancve
debiancve
CVE-2018-16421
2018-09-04 00:29:00
redhatcve
redhatcve
CVE-2018-16421
2018-09-12 06:23:25
prion
prion
Buffer overflow
2018-09-04 00:29:00
osv
osv
CVE-2018-16421
2018-09-04 00:29:00
opensc - security update
2019-09-11 00:00:00
opensc-0.21.0-2.2 on GA media
2024-06-15 00:00:00
alpinelinux
alpinelinux
CVE-2018-16421
2018-09-04 00:29:00
cve
cve
CVE-2018-16421
2018-09-04 00:29:00
CVE-2018-1000672
2018-09-05 06:29:00
nessus
nessus
Scientific Linux Security Update : opensc on SL7.x x86_64 (20190806)
2019-08-27 00:00:00
RHEL 7 : opensc (RHSA-2019:2154)
2019-08-12 00:00:00
Amazon Linux 2 : opensc (ALAS-2019-1312)
2019-10-11 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for opensc (EulerOS-SA-2020-1417)
2020-04-16 00:00:00
Mageia: Security Advisory (MGASA-2019-0019)
2022-01-28 00:00:00
Fedora Update for opensc FEDORA-2018-d0dff2abaa
2018-10-06 00:00:00
amazon
amazon
Medium: opensc
2019-10-08 22:01:00
redhat
redhat
(RHSA-2019:2154) Moderate: opensc security, bug fix, and enhancement update
2019-08-06 08:07:23
centos
centos
opensc security update
2019-08-30 03:47:57
oraclelinux
oraclelinux
opensc security, bug fix, and enhancement update
2019-08-13 00:00:00
fedora
fedora
[SECURITY] Fedora 29 Update: opensc-0.19.0-1.fc29
2018-10-05 16:07:00
[SECURITY] Fedora 28 Update: opensc-0.19.0-1.fc28
2018-10-05 17:12:11
mageia
mageia
Updated opensc packages fix security vulnerabilities
2019-01-09 00:50:23
suse
suse
Security update for opensc (moderate)
2018-11-10 00:27:22
debian
debian
[SECURITY] [DLA 1916-1] opensc security update
2019-09-11 19:53:49