Описание
Security update for opensc
This update for opensc fixes the following issues:
- CVE-2021-42780: Fixed use after return in insert_pin() (bsc#1192005).
- CVE-2021-42782: Stack buffer overflow issues in various places (bsc#1191957).
Список пакетов
SUSE Linux Enterprise Point of Sale 11 SP3
libopensc2-0.11.6-5.27.14.1
opensc-0.11.6-5.27.14.1
SUSE Linux Enterprise Server 11 SP4-LTSS
libopensc2-0.11.6-5.27.14.1
libopensc2-32bit-0.11.6-5.27.14.1
opensc-0.11.6-5.27.14.1
opensc-32bit-0.11.6-5.27.14.1
Ссылки
- Link for SUSE-SU-2021:14835-1
- E-Mail link for SUSE-SU-2021:14835-1
- SUSE Security Ratings
- SUSE Bug 1191957
- SUSE Bug 1192005
- SUSE CVE CVE-2021-42780 page
- SUSE CVE CVE-2021-42782 page
Описание
A use after return issue was found in Opensc before version 0.22.0 in insert_pin function that could potentially crash programs using the library.
Затронутые продукты
SUSE Linux Enterprise Point of Sale 11 SP3:libopensc2-0.11.6-5.27.14.1
SUSE Linux Enterprise Point of Sale 11 SP3:opensc-0.11.6-5.27.14.1
SUSE Linux Enterprise Server 11 SP4-LTSS:libopensc2-0.11.6-5.27.14.1
SUSE Linux Enterprise Server 11 SP4-LTSS:libopensc2-32bit-0.11.6-5.27.14.1
Ссылки
- CVE-2021-42780
- SUSE Bug 1192005
- SUSE Bug 1196716
Описание
Stack buffer overflow issues were found in Opensc before version 0.22.0 in various places that could potentially crash programs using the library.
Затронутые продукты
SUSE Linux Enterprise Point of Sale 11 SP3:libopensc2-0.11.6-5.27.14.1
SUSE Linux Enterprise Point of Sale 11 SP3:opensc-0.11.6-5.27.14.1
SUSE Linux Enterprise Server 11 SP4-LTSS:libopensc2-0.11.6-5.27.14.1
SUSE Linux Enterprise Server 11 SP4-LTSS:libopensc2-32bit-0.11.6-5.27.14.1
Ссылки
- CVE-2021-42782
- SUSE Bug 1191957
- SUSE Bug 1192635
- SUSE Bug 1192643
- SUSE Bug 1192786
- SUSE Bug 1193388