Описание
A double free when handling responses in read_file in tools/egk-tool.c (aka the eGK card tool) in OpenSC before 0.19.0-rc1 could be used by attackers able to supply crafted smartcards to cause a denial of service (application crash) or possibly have unspecified other impact.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support, was needed |
| cosmic | ignored | end of life |
| devel | not-affected | 0.19.0~rc1-1 |
| disco | not-affected | 0.19.0~rc1-1 |
| eoan | not-affected | 0.19.0~rc1-1 |
| esm-apps/bionic | needed | |
| esm-apps/focal | not-affected | 0.19.0~rc1-1 |
| esm-apps/jammy | not-affected | 0.19.0~rc1-1 |
| esm-apps/noble | not-affected | 0.19.0~rc1-1 |
| esm-apps/xenial | needed |
Показывать по
EPSS
4.6 Medium
CVSS2
6.6 Medium
CVSS3
Связанные уязвимости
A double free when handling responses in read_file in tools/egk-tool.c (aka the eGK card tool) in OpenSC before 0.19.0-rc1 could be used by attackers able to supply crafted smartcards to cause a denial of service (application crash) or possibly have unspecified other impact.
A double free when handling responses in read_file in tools/egk-tool.c (aka the eGK card tool) in OpenSC before 0.19.0-rc1 could be used by attackers able to supply crafted smartcards to cause a denial of service (application crash) or possibly have unspecified other impact.
A double free when handling responses in read_file in tools/egk-tool.c ...
A double free when handling responses in read_file in tools/egk-tool.c (aka the eGK card tool) in OpenSC before 0.19.0-rc1 could be used by attackers able to supply crafted smartcards to cause a denial of service (application crash) or possibly have unspecified other impact.
EPSS
4.6 Medium
CVSS2
6.6 Medium
CVSS3