Lucene search
Veracode Vulnerability DatabaseVERACODE:27793HistoryNov 05, 2020 - 3:10 a.m.
Double Free
2020-11-0503:10:22
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
18
opensc
vulnerability
double free
uniqueness check
libopensc
coolkey_add_object
software
EPSS
0.001
Percentile
48.5%
opensc is vulnerable to double free. The vulnerability exists due to lack of uniqueness check in coolkey_free_private_data because coolkey_add_object in libopensc/card-coolkey.c.
References
access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.3_release_notes/index
access.redhat.com/errata/RHSA-2020:4483
access.redhat.com/security/updates/classification/#moderate
bugs.chromium.org/p/oss-fuzz/issues/detail?id=19208
github.com/OpenSC/OpenSC/commit/c246f6f69a749d4f68626b40795a4f69168008f4
github.com/OpenSC/OpenSC/compare/0.19.0...0.20.0
Related
nvd
nvd
CVE-2019-20792
2020-04-29 04:15:17
cve
cve
CVE-2019-20792
2020-04-29 04:15:17
debiancve
debiancve
CVE-2019-20792
2020-04-29 04:15:17
ubuntucve
ubuntucve
CVE-2019-20792
2020-04-29 00:00:00
cvelist
cvelist
CVE-2019-20792
2020-04-29 03:53:57
osv
osv
opensc-0.22.0-3.1 on GA media
2024-06-15 00:00:00
CVE-2019-20792
2020-04-29 04:15:17
prion
prion
Double free
2020-04-29 04:15:00
redhatcve
redhatcve
CVE-2019-20792
2020-05-20 09:25:35
openvas
openvas
Huawei EulerOS: Security Advisory for opensc (EulerOS-SA-2022-1752)
2022-05-25 00:00:00
SUSE: Security Advisory (SUSE-SU-2021:1168-1)
2021-06-09 00:00:00
openSUSE: Security Advisory for opensc (openSUSE-SU-2021:0565-1)
2021-04-17 00:00:00
nessus
nessus
EulerOS 2.0 SP3 : opensc (EulerOS-SA-2022-1752)
2022-05-26 00:00:00
AlmaLinux 8 : opensc (ALSA-2020:4483)
2022-02-09 00:00:00
RHEL 8 : opensc (RHSA-2020:4483)
2020-11-04 00:00:00
redhat
redhat
(RHSA-2020:4483) Moderate: opensc security, bug fix, and enhancement update
2020-11-03 12:08:55
oraclelinux
oraclelinux
opensc security, bug fix, and enhancement update
2020-11-10 00:00:00
almalinux
almalinux
Moderate: opensc security, bug fix, and enhancement update
2020-11-03 12:08:55
amazon
amazon
Medium: opensc
2023-09-13 23:44:00
suse
suse
Security update for opensc (moderate)
2021-04-17 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1936
2021-07-02 17:36:31