Описание
Endless recursion when handling responses from an IAS-ECC card in iasecc_select_file in libopensc/card-iasecc.c in OpenSC before 0.19.0-rc1 could be used by attackers able to supply crafted smartcards to hang or crash the opensc library using programs.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support, was needed |
| cosmic | ignored | end of life |
| devel | not-affected | 0.19.0-1build1 |
| disco | not-affected | 0.19.0-1build1 |
| eoan | not-affected | 0.19.0-1build1 |
| esm-apps/bionic | needed | |
| esm-apps/focal | not-affected | 0.19.0-1build1 |
| esm-apps/jammy | not-affected | 0.19.0-1build1 |
| esm-apps/noble | not-affected | 0.19.0-1build1 |
| esm-apps/xenial | needed |
Показывать по
2.1 Low
CVSS2
4.3 Medium
CVSS3
Связанные уязвимости
Endless recursion when handling responses from an IAS-ECC card in iasecc_select_file in libopensc/card-iasecc.c in OpenSC before 0.19.0-rc1 could be used by attackers able to supply crafted smartcards to hang or crash the opensc library using programs.
Endless recursion when handling responses from an IAS-ECC card in iasecc_select_file in libopensc/card-iasecc.c in OpenSC before 0.19.0-rc1 could be used by attackers able to supply crafted smartcards to hang or crash the opensc library using programs.
Endless recursion when handling responses from an IAS-ECC card in iase ...
Endless recursion when handling responses from an IAS-ECC card in iasecc_select_file in libopensc/card-iasecc.c in OpenSC before 0.19.0-rc1 could be used by attackers able to supply crafted smartcards to hang or crash the opensc library using programs.
2.1 Low
CVSS2
4.3 Medium
CVSS3