Описание
Security update for opensc
This update for opensc fixes the following issues:
- CVE-2023-2977: Fixed out of bounds read in pkcs15 cardos_have_verifyrc_package() (bsc#1211894).
Список пакетов
Image SLES15-SP4-Hardened-BYOS
opensc-0.22.0-150400.3.3.1
Image SLES15-SP4-Hardened-BYOS-Azure
opensc-0.22.0-150400.3.3.1
Image SLES15-SP4-Hardened-BYOS-EC2
opensc-0.22.0-150400.3.3.1
Image SLES15-SP4-Hardened-BYOS-GCE
opensc-0.22.0-150400.3.3.1
Image SLES15-SP4-SAP-Hardened
opensc-0.22.0-150400.3.3.1
Image SLES15-SP4-SAP-Hardened-Azure
opensc-0.22.0-150400.3.3.1
Image SLES15-SP4-SAP-Hardened-BYOS
opensc-0.22.0-150400.3.3.1
Image SLES15-SP4-SAP-Hardened-BYOS-Azure
opensc-0.22.0-150400.3.3.1
Image SLES15-SP4-SAP-Hardened-BYOS-EC2
opensc-0.22.0-150400.3.3.1
Image SLES15-SP4-SAP-Hardened-BYOS-GCE
opensc-0.22.0-150400.3.3.1
Image SLES15-SP4-SAP-Hardened-GCE
opensc-0.22.0-150400.3.3.1
Image SLES15-SP5-Hardened-BYOS-Azure
opensc-0.22.0-150400.3.3.1
Image SLES15-SP5-Hardened-BYOS-EC2
opensc-0.22.0-150400.3.3.1
Image SLES15-SP5-Hardened-BYOS-GCE
opensc-0.22.0-150400.3.3.1
Image SLES15-SP5-SAP-Hardened-Azure
opensc-0.22.0-150400.3.3.1
Image SLES15-SP5-SAP-Hardened-BYOS-Azure
opensc-0.22.0-150400.3.3.1
Image SLES15-SP5-SAP-Hardened-BYOS-EC2
opensc-0.22.0-150400.3.3.1
Image SLES15-SP5-SAP-Hardened-BYOS-GCE
opensc-0.22.0-150400.3.3.1
Image SLES15-SP5-SAP-Hardened-EC2
opensc-0.22.0-150400.3.3.1
Image SLES15-SP5-SAP-Hardened-GCE
opensc-0.22.0-150400.3.3.1
SUSE Linux Enterprise Micro 5.3
opensc-0.22.0-150400.3.3.1
SUSE Linux Enterprise Micro 5.4
opensc-0.22.0-150400.3.3.1
SUSE Linux Enterprise Module for Basesystem 15 SP4
opensc-0.22.0-150400.3.3.1
SUSE Linux Enterprise Module for Basesystem 15 SP5
opensc-0.22.0-150400.3.3.1
openSUSE Leap 15.4
opensc-0.22.0-150400.3.3.1
opensc-32bit-0.22.0-150400.3.3.1
openSUSE Leap 15.5
opensc-0.22.0-150400.3.3.1
opensc-32bit-0.22.0-150400.3.3.1
openSUSE Leap Micro 5.3
opensc-0.22.0-150400.3.3.1
Ссылки
- Link for SUSE-SU-2023:2516-1
- E-Mail link for SUSE-SU-2023:2516-1
- SUSE Security Ratings
- SUSE Bug 1211894
- SUSE CVE CVE-2023-2977 page
Описание
A vulnerbility was found in OpenSC. This security flaw cause a buffer overrun vulnerability in pkcs15 cardos_have_verifyrc_package. The attacker can supply a smart card package with malformed ASN1 context. The cardos_have_verifyrc_package function scans the ASN1 buffer for 2 tags, where remaining length is wrongly caculated due to moved starting pointer. This leads to possible heap-based buffer oob read. In cases where ASAN is enabled while compiling this causes a crash. Further info leak or more damage is possible.
Затронутые продукты
Image SLES15-SP4-Hardened-BYOS-Azure:opensc-0.22.0-150400.3.3.1
Image SLES15-SP4-Hardened-BYOS-EC2:opensc-0.22.0-150400.3.3.1
Image SLES15-SP4-Hardened-BYOS-GCE:opensc-0.22.0-150400.3.3.1
Image SLES15-SP4-Hardened-BYOS:opensc-0.22.0-150400.3.3.1
Ссылки
- CVE-2023-2977
- SUSE Bug 1211894